PT-2020-20200 · Phplist · Phplist
Suvadip Kar
·
Published
2020-02-03
·
Updated
2024-03-06
·
CVE-2020-8547
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
phpList version 3.5.0
Description
The issue allows for admin login bypass due to type juggling. This occurs because the code uses == for password hash comparison instead of ===, which can mishandle hashes starting with 0e followed by numerical characters.
Recommendations
For phpList version 3.5.0, consider updating to a newer version that uses === for password hash comparison to prevent type juggling attacks. As a temporary workaround, consider hardening the authentication mechanism to prevent bypass attacks.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Phplist