CVE-2026-56396 | phpMyFAQ up to 4.1.3 editUser/updateUserRights authorization (GHSA-985r-q3qp-299h / EUVD-2026-38162)
A vulnerability was found in phpMyFAQ up to 4.1.3 and classified as critical. Affected by this vulnerability is the function editUser/updateUserRights. Such manipulation leads to missing authorization.
This vulnerability is traded as CVE-2026-56396. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.