4 matches found
CVE-2022-36072
SilverwareGames.io is a social network for users to play video games online. In version 1.1.8 and prior, due to an unobvious feature of PHP, hashes generated by built-in functions and starting with the 0e symbols were being handled as zero multiplied with the e number. Therefore, the hash value w...
CVE-2022-36072
creationtimestamp| type| source ---|---|--- 2022-09-07 00:13:22+00:00| seen| https://t.me/cibsecurity/49374...
CVE-2022-36072
SilverwareGames.io (versions ≤ 1.1.8) is affected by a PHP quirk where hashes starting with 0e were treated as 0 in == comparisons, potentially compromising authentication paths. The issue is fixed in version 1.1.9 by switching to strict comparisons (===) in sign-in/sign-up handlers. Remediate by...
CVE-2022-36072 SilverwareGames.io used == for hashing instead of ===
SilverwareGames.io is a social network for users to play video games online. In version 1.1.8 and prior, due to an unobvious feature of PHP, hashes generated by built-in functions and starting with the 0e symbols were being handled as zero multiplied with the e number. Therefore, the hash value w...