CNNVD-202512-4962 Information
CNNVD ID
CNNVD-202512-4962
Related CVE
- CNNVD Published: 2025-12-29
Description (Chinese)
phpMyFAQ是Thorsten Rinne个人开发者的一个多语言、完全由数据库驱动的常见问题解答系统。 phpMyFAQ 4.0.16之前版本存在安全漏洞,该漏洞源于未经验证的攻击者可触发配置备份生成,可能导致高影响信息泄露。
Description (English)
phpMyFAQ is a multilingual, database-driven, common-question answer system for Thorsten Rinne personal developers. A security loophole existed in the pre-pMyFAQ 4.0.16 version, which stemmed from the fact that uncertified assailants could trigger the configuration back-up generation, which could lead to the disclosure of high-impact information.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-12-29
Last Modified
2026-02-24
References
https://github.com/thorsten/phpMyFAQ/commit/b0e99ee3695152115841cb546d8dce64ceb8c29a https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-9cg9-4h4f-j6fg https://access.redhat.com/security/cve/cve-2025-69200
Patch
https://www.phpmyfaq.de/download/
Share on: