logo

Database

Lack of protection against brute force attacks In thorsten/phpmyfaq

Description

phpMyFAQ has weak password requirements Weak password requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-17532. NVD-2023-17533. OSV-2023-17534. GCVE-2023-1753

References

1. https://github.com/thorsten/phpmyfaq/commit/f612a72494080e04947da7028340fee4493fe8a52. https://huntr.dev/bounties/01d6ae23-3a8f-42a8-99f4-10246187d71b

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.