Описание
Integer Overflow or Wraparound in Microweber
In Microweber prior to 1.2.12, a user can create an account with a password thousands of characters in length, leading to memory corruption/integer overflow. Version 1.2.2 sets maximum password length at 500 characters.
Пакеты
Наименование
microweber/microweber
composer
Затронутые версииВерсия исправления
< 1.2.12
1.2.12
Связанные уязвимости
CVSS3: 7.5
nvd
почти 4 года назад
Able to create an account with long password leads to memory corruption / Integer Overflow in GitHub repository microweber/microweber prior to 1.2.12.