[HIGH] phpMyFAQ: Default Empty API Token Authentication Bypass

PKSA-xr26-9czp-vbgk CVE-2026-35672 GHSA-gp95-j463-vv28

Affected package: phpmyfaq/phpmyfaq

Affected version: <=4.1.2

Reported by:
GitHub