Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2024-55885 - Vulnerability Database
Beego Framework

Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2024-55885

High
Reference: CVE-2024-55885
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-55885
Title: Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability
Overview:

beego is an open-source web framework for the Go programming language. Versions of beego prior to 2.3.4 use MD5 as a hashing algorithm. MD5 is no longer considered secure against well-funded opponents due to its vulnerability to collision attacks. Version 2.3.4 replaces MD5 with SHA256.