Lucene search
Veracode Vulnerability DatabaseVERACODE:37731HistoryNov 01, 2022 - 5:49 a.m.
Authentication Bypass
2022-11-0105:49:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
authentication bypass vulnerability
thorsten/phpmyfaq
password change restriction
software
0.002 Low
EPSS
Percentile
57.2%
thorsten/phpmyfaq is vulnerable to authentication bypass. The vulnerability exists due to lack of restrictions in the password change function which allows an attacker to successfully update the password by changing one character.
| CPE | Name | Operator | Version |
|---|---|---|---|
| thorsten/phpmyfaq | le | 3.1.7 | |
| phpmyfaq/phpmyfaq | le | 3.1.7 | |
| thorsten/phpmyfaq | le | 3.1.7 | |
| phpmyfaq/phpmyfaq | le | 3.1.7 |
Related
osv
osv
CVE-2022-3754
2022-10-29 13:15:09
phpMyFAQ contains Weak Password Requirements
2022-10-29 19:00:27
cve
cve
CVE-2022-3754
2022-10-29 13:15:09
huntr
huntr
Weak Password Requirement
2022-10-20 10:27:35
nvd
nvd
CVE-2022-3754
2022-10-29 13:15:09
cvelist
cvelist
CVE-2022-3754 Weak Password Requirements in thorsten/phpmyfaq
2022-10-29 00:00:00
prion
prion
Default credentials
2022-10-29 13:15:00
github
github
phpMyFAQ contains Weak Password Requirements
2022-10-29 19:00:27
openvas
openvas
phpMyFAQ < 3.1.8 Multiple Vulnerabilities
2022-11-03 00:00:00