Описание
phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phprank:phprank:1.8:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01402
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable.
EPSS
Процентиль: 80%
0.01402
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other