[MEDIUM] phpMyFAQ: Missing Authorization on Tag Deletion Allows Any Authenticated User to Delete Tags

PKSA-bgqy-s1r8-zchm CVE-2026-46365 GHSA-5h62-f8fg-4w7q

Affected package: thorsten/phpmyfaq

Affected version: <4.1.2

Reported by:
GitHub