[HIGH] phpMyFAQ: Stored XSS via Utils::parseUrl() in comment rendering

PKSA-hs6b-6v19-kjgs CVE-2026-46367 GHSA-w42g-jj8w-fj77

Affected package: phpmyfaq/phpmyfaq

Affected version: <4.1.2

Reported by:
GitHub