Skip to main content

Usebb

1 CVEs product

Monthly

CVE-2020-8088 CRITICAL POC Act Now

panel_login.php in UseBB 1.0.12 allows type juggling for login bypass because != is used instead of !== for password hashes, which mishandles hashes that begin with 0e followed by exclusively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Usebb
NVD
CVSS 3.1
9.8
EPSS
1.4%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

panel_login.php in UseBB 1.0.12 allows type juggling for login bypass because != is used instead of !== for password hashes, which mishandles hashes that begin with 0e followed by exclusively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Usebb
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy