logo

Database

Lack of protection against brute force attacks In thorsten/phpmyfaq

Description

phpMyFAQ has Weak Password Requirements Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-03072. NVD-2023-03073. OSV-2023-03074. GCVE-2023-0307

References

1. https://github.com/thorsten/phpmyfaq/commit/8beed2fca5b0b82c6ba866d0ffd286d0c1fbf5962. https://huntr.dev/bounties/fac01e9f-e3e5-4985-94ad-59a76485f215

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.

FLAT-4J1KX – Vulnerability | Fluid Attacks Database