CVE-2022-36072

Name of the Vulnerable Software and Affected Versions SilverwareGames.io versions 1.1.8 and prior

Description SilverwareGames.io is a social network for users to play video games online. Due to an unobvious feature of PHP, hashes generated by built-in functions and starting with the 0e symbols were being handled as zero multiplied with the e number, resulting in a hash value equal to 0. The issue was fixed by using === instead of == in comparisons, such as on sign in/sign up handlers.

Recommendations For versions 1.1.8 and prior, update to version 1.1.9 or later, which uses === instead of == in comparisons to resolve the issue. As a temporary workaround, consider modifying the comparison operators in the affected code to use === for stricter type checking, until a formal update can be applied.