4 matches found
CVE-2024-56516
free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...
CVE-2024-56516
creationtimestamp| type| source ---|---|--- 2024-12-30 16:31:57+00:00| seen| https://infosec.exchange/users/cve/statuses/113742729529291973 2024-12-30 19:18:32+00:00| seen| https://t.me/cvedetector/13939...
CVE-2024-56516
CVE-2024-56516 affects free-one-api up to version 1.0.1, where MD5 is used to hash passwords before sending to the backend. This hashing approach is cryptographically broken and vulnerable to collision attacks, exposing potential credential compromise. The available connected documents specify th...
CVE-2024-56516 free-one-api uses md5 for password storage
free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...