Unrated severityNVD Advisory· Published Jan 27, 2021· Updated Aug 4, 2024
CVE-2020-23361
CVE-2020-23361
Description
phpList 3.5.3 allows type juggling for login bypass because == is used instead of === for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical characters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- phpList/phpListdescription
Patches
Vulnerability mechanics
References
1- github.com/phpList/phplist3/issues/668mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.