A vulnerability identified as problematic has been detected in phpMyFAQ up to 4.1.4. This issue affects the function concatenatePaths of the file src/phpMyFAQ/Export/Pdf/Wrapper.php of the component PDF Generation. This manipulation of the argument path causes path traversal.

This vulnerability is handled as CVE-2026-57961. The attack can be initiated remotely. There is not any exploit available.