[MEDIUM] phpMyFAQ's Missing CONFIGURATION_EDIT Permission Check on 12 Admin API Configuration Tab Endpoints Allows Information Disclosure by Any Authenticated User

PKSA-pmsp-dtdj-k1f9 GHSA-rm98-82fr-mcfx

Affected package: thorsten/phpmyfaq

Affected version: <=4.1.1

Reported by:
GitHub