Thoughtfault

**Name of the Vulnerable Software and Affected Versions** phpfm version 1.7.9 **Description** phpfm version 1.7.9 contains an authentication bypass. This occurs due to a loose type comparison during password hash validation. Attackers can bypass authentication by crafting specific password hashes starting with '0e' or '00e', allowing unauthorized access. Successful exploitation enables attackers to upload malicious PHP files to the server. The vulnerable component is the password hash validation process, specifically the comparison logic within the `checkPassword()` function. The vulnerable parameter is the `password` hash. **Recommendations** Update to a newer version of phpfm that addresses this issue.

**Name of the Vulnerable Software and Affected Versions** PimpMyLog version 1.7.14 **Description** The software contains an improper access control issue that allows remote attackers to create administrator accounts without authorization through the configuration endpoint. Attackers can exploit the unsanitized `username` field to inject malicious JavaScript, create a hidden backdoor account, and potentially access sensitive server-side log information and environmental variables. The vulnerable endpoint is '/configuration'. **Recommendations** Apply appropriate input sanitization and validation to the `username` field in the '/configuration' endpoint. Restrict access to the '/configuration' endpoint to authorized personnel only.