๐Ÿ” CVE Alert

CVE-2026-57996

HIGH 8.8

phpMyFAQ - Privilege Escalation via Missing SuperAdmin Guard in user/add Endpoint

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in the user/add API endpoint that allows non-SuperAdmin administrators to create SuperAdmin accounts. A delegated administrator with USER_ADD/EDIT/DELETE permissions can call POST /admin/api/user/add with isSuperAdmin: true and attacker-chosen credentials to create a SuperAdmin account, then authenticate as that account to achieve full instance takeover.

CWE CWE-269
Vendor phpmyfaq
Product phpmyfaq
Published Jul 15, 2026
Stay Ahead of the Next One

Get instant alerts for phpmyfaq phpmyfaq

Be the first to know when new high vulnerabilities affecting phpmyfaq phpmyfaq are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

phpMyFAQ / phpMyFAQ
0 < 4.1.5

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-r2f4-v277-hvw9 vulncheck.com: https://www.vulncheck.com/advisories/phpmyfaq-privilege-escalation-via-missing-superadmin-guard-in-user-add-endpoint

Credits

๐Ÿ” Yanchon918s