The phpMyFAQ Team has learned about a vulnerability in PHP that can be exploited in phpMyFAQ 1.5.x and phpMyFAQ 1.6.x RC2.
A binary safety issue in the PHP function html_entity_decode() can leak memory content.
The phpMyFAQ Team has released the new phpMyFAQ versions 1.5.9 and phpMyFAQ 1.6.0 which fix these vulnerability. All users of affected phpMyFAQ versions are encouraged to upgrade as soon as possible to this latest version.
If it's possible you should upgrade your PHP version to 4.4.3 or 5.1.3 which also fixes the problem.
The phpMyFAQ Team would like to thank Tõnu Samuel for discovering this vulnerability.