CVE-2025-59745

AndSoft e-TMS v25.03 is affected. The issue arises from using MD5 to hash passwords, a cryptographically weak hash susceptible to collisions and credential disclosure. Public sources (CNVD/NVD) corroborate MD5-based password hashing as the root cause; exploitation details are not provided in the ...

Actualizer 安全漏洞

Actualizer is a simple single shell scripting solution open-sourced by ChewKeanHo for creating Debian from scratch. A security vulnerability exists in versions of Actualizer prior to 1.2.0 that stems from the use of an inappropriate SHA512 password hash algorithm, which may result in insufficient...

PSWD.JS Insecure Password Hash Weakness

No description provided by source. source: http://www.securityfocus.com/bid/19333/info Applications running pswd.js are prone to an insecure password-hash weakness. This issue is due to a design flaw that results in password hashes being created in an insecure manner. This issue allows attackers ...

Typo <= 5.1.3 Multiple Vulnerabilities

====================================================================== Typo = 5.1.3 Multiple Vulnerabilities ====================================================================== Author: L4teral l4teral at gmail com Impact: Cross Site Scripting SQL Injection Insecure password hash salt Status:...

typo-sqlxss.txt

====================================================================== Typo Impact: Cross Site Scripting SQL Injection Insecure password hash salt Status: patch not available ------------------------------ Affected software description: ------------------------------ Application: Typo Version: =...