CNNVD-202511-1890 Information

CNNVD ID

CNNVD-202511-1890

Related CVE

CVE-2025-62519

• CNNVD Published: 2025-11-17

Description (Chinese)

phpMyFAQ是Thorsten Rinne个人开发者的一个多语言、完全由数据库驱动的常见问题解答系统。 phpMyFAQ 4.0.14之前版本存在SQL注入漏洞，该漏洞源于SQL注入，可能导致数据库完全破解。

Description (English)

phpMyFAQ is a multilingual, database-driven, common-question answer system for Thorsten Rinne personal developers. The previous version of the phpMyFAQ 4.0.14 had an SQL injection loophole, which originated in the SQL injection and could lead to a complete breakdown of the database.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-11-17

Last Modified

2026-02-24

References

https://github.com/thorsten/phpMyFAQ/compare/4.0.13…4.0.14 https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-fxm2-cmwj-qvx4 https://access.redhat.com/security/cve/cve-2025-62519

Patch

https://github.com/thorsten/phpMyFAQ/releases