Lucene search
K

7 matches found

EUVD
EUVD
added 2026/06/23 10:2 p.m.13 views

EUVD-2026-35091

phpMyFAQ has Weak Cryptography - SHA1 for Password Hashing...

6.9CVSS5.8AI score0.00182EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/09 8:59 p.m.13 views

CVE-2026-48488

phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are hashed using SHA-1, a cryptographically broken algorithm. SHA-1 has been vulnerable to collision attacks since 2017 SHAttered. Version 4.1.4 fixes the issue...

6.9CVSS5.3AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2026/06/08 4:16 p.m.15 views

CVE-2026-48488

phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are hashed using SHA-1, a cryptographically broken algorithm. SHA-1 has been vulnerable to collision attacks since 2017 SHAttered. Version 4.1.4 fixes the issue...

6.9CVSS0.00182EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/08 3:15 p.m.8 views

CVE-2026-48488 phpMyFAQ has Weak Cryptography - SHA1 for Password Hashing

phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are hashed using SHA-1, a cryptographically broken algorithm. SHA-1 has been vulnerable to collision attacks since 2017 SHAttered. Version 4.1.4 fixes the issue...

6.9CVSS5.3AI score0.00182EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:15 p.m.7 views

CVE-2026-48488

phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are hashed using SHA-1, a cryptographically broken algorithm. SHA-1 has been vulnerable to collision attacks since 2017 SHAttered. Version 4.1.4 fixes the issue...

6.9CVSS5.3AI score0.00182EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/08 3:15 p.m.29 views

CVE-2026-48488

CVE-2026-48488 affects phpMyFAQ prior to version 4.1.4, where attachment passwords are hashed using SHA-1, a broken algorithm. The issue is resolved in 4.1.4. The CVSS base score is 6.9 (Medium); attack vector NETWORK, no user interaction needed, and impact is limited to confidentiality. If explo...

6.9CVSS5.3AI score0.00182EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.20 views

PT-2026-47330

Name of the Vulnerable Software and Affected Versions phpMyFAQ versions prior to 4.1.4 Description Attachment passwords are hashed using SHA-1, which is a cryptographically broken algorithm susceptible to collision attacks. A collision attack occurs when two different inputs produce the same hash...

6.9CVSS5.8AI score0.00182EPSS
Exploits0References7
Rows per page
Query Builder