CVE-2026-48488EPSS p7.9%

CVE-2026-48488CVE-2026-48488

Description

phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are hashed using SHA-1, a cryptographically broken algorithm. SHA-1 has been vulnerable to collision attacks since 2017 (SHAttered). Version 4.1.4 fixes the issue.

Scoring

EPSS0.18% probability of exploitation · percentile 7.9% · 2026-06-19T12:03:05Z
Last modified2026-06-09

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-46364
CVE
CVE-2026-45010
CVE
CVE-2026-34728
CVE
CVE-2025-59943
CVE
CVE-2026-34031
CVE
CVE-2026-28479
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.