Lucene search
Veracode Vulnerability DatabaseVERACODE:39035HistoryJan 27, 2023 - 9:18 a.m.
Improper Authentication
2023-01-2709:18:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
improper authentication
captcha.php
vulnerable software
0.002 Low
EPSS
Percentile
58.9%
thorsten/phpmyfaq is vulnerable to Improper Authentication. The vulnerability is due to Captcha.php checking the captcha length incorrectly which allows an attacker to bypass captcha checks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| thorsten/phpmyfaq | le | 3.1.9 | |
| thorsten/phpmyfaq | le | 3.1.9 |
Related
cve
cve
CVE-2023-0311
2023-01-15 22:15:10
huntr
huntr
Bypass All Captchas in the application
2022-12-14 21:22:08
github
github
phpMyFAQ Improper Authentication vulnerability
2023-01-16 00:30:24
osv
osv
CVE-2023-0311
2023-01-15 22:15:10
phpMyFAQ Improper Authentication vulnerability
2023-01-16 00:30:24
prion
prion
Authentication flaw
2023-01-15 22:15:00
nvd
nvd
CVE-2023-0311
2023-01-15 22:15:10
cnvd
cnvd
phpMyFAQ authorization issue vulnerability
2023-01-16 00:00:00
cvelist
cvelist
CVE-2023-0311 Improper Authentication in thorsten/phpmyfaq
2023-01-15 00:00:00
openvas
openvas
phpMyFAQ < 3.1.10 Multiple Vulnerabilities
2023-01-16 00:00:00