CVE-2023-53894

Name of the Vulnerable Software and Affected Versions phpfm version 1.7.9

Description phpfm version 1.7.9 contains an authentication bypass. This occurs due to a loose type comparison during password hash validation. Attackers can bypass authentication by crafting specific password hashes starting with '0e' or '00e', allowing unauthorized access. Successful exploitation enables attackers to upload malicious PHP files to the server. The vulnerable component is the password hash validation process, specifically the comparison logic within the checkPassword() function. The vulnerable parameter is the password hash.

Recommendations Update to a newer version of phpfm that addresses this issue.