| عنوان | Unauthenticated Password Hash Disclosure vulnerability |
|---|
| الوصف | Vulnerability was found in SourceCodester Book Store Management System 1.0. An Unauthenticated Password Hash Disclosure vulnerability has been identified, which can be exploited to retrieve the password hashes of all existing user accounts.
The product(s): https://www.sourcecodester.com/php/15748/book-store-management-system-project-using-php-codeigniter-3-free-source-code.html
Affected product(s)/code base: https://www.sourcecodester.com/sites/default/files/download/oretnom23/bsms_ci.zip
Affected component(s): /bsms_ci/index.php/user/edit_user/{id} |
|---|
| المصدر | ⚠️ https://github.com/lithonn/bug-report/tree/main/vendors/oretnom23/bsms_ci/passwd-hash |
|---|
| المستخدم | leecybersec (UID 36724) |
|---|
| ارسال | 30/11/2022 08:59 AM (4 سنوات منذ) |
|---|
| الاعتدال | 30/11/2022 11:20 AM (2 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 214587 [SourceCodester Book Store Management System 1.0 edit_user كلمة المرور الكشف عن المعلومات] |
|---|
| النقاط | 20 |
|---|