phpLiteAdmin is vulnerable to Authorization Bypasses. The application uses the ==
comparator when validating passwords, allowing a malicious user to bypass the validation by passing in a numerical password in scientific notation e.g. 0e1
.
CPE | Name | Operator | Version |
---|---|---|---|
dww510/phpliteadmin | eq | dev-master | |
dww510/phpliteadmin | eq | dev-master |