2 matches found
CVE-2020-10539
An issue was discovered in Epikur before 20.1.1. The Epikur server contains the checkPasswort function that, upon user login, checks the submitted password against the user password's MD5 hash stored in the database. It is also compared to a second MD5 hash, which is the same for every user aka a...
CVE-2020-10539
The CVE-2020-10539 entry concerns Epikur before version 20.1.1. The login process uses checkPasswort() to validate the submitted password against the user’s MD5 hash in the database and also against a second, constant MD5 hash (the “Backdoor Password” 3p1kursupport). If the submitted password mat...