10 matches found
CVE-2024-28864
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...
CVE-2024-28864
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...
CVE-2024-28864 [TagAwareCipher] - Decryption Failure (Regex Match)
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...
CVE-2024-28864 [TagAwareCipher] - Decryption Failure (Regex Match)
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...
CVE-2024-28864 [TagAwareCipher] - Decryption Failure (Regex Match)
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...
CVE-2024-28864
CVE-2024-28864 affects the PHP library SecureProps (versions 1.2.0 and 1.2.1). The issue arises when encrypted data is encoded with NullEncoder and fed into TagAwareCipher ; a regex fails to detect tags (especially with special characters such as ā\nā), causing the decryption to be skipped and th...
GHSA-RJ29-J2G4-77Q8 [TagAwareCipher] - Decryption Failure (Regex Match)
Impact Vulnerability in SecureProps involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded with NullEncoder and passed to TagAwareCipher, and contains special characters such as \n. As a result, the decryption process is...
[TagAwareCipher] - Decryption Failure (Regex Match)
Impact Vulnerability in SecureProps involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded with NullEncoder and passed to TagAwareCipher, and contains special characters such as \n. As a result, the decryption process is...
PT-2024-22613
Name of the Vulnerable Software and Affected Versions SecureProps versions 1.2.0 through 1.2.1 Description A vulnerability in SecureProps involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded with NullEncoder and passed t...
SecureProps Security Vulnerabilities
SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A security vulnerability exists in SecureProps versions 1.2.0 and 1.2.1, which stems from the inability of regular expressions to detect tags during the decryption of encrypted data, which...