phpList Access of Resource Using Incompatible Type (Type Confusion) Vulnerability - CVE-2020-8547 - Vulnerability Database

phpList Access of Resource Using Incompatible Type (Type Confusion) Vulnerability - CVE-2020-8547

Critical
Reference: CVE-2020-8547
Title: phpList Access of Resource Using Incompatible Type (Type Confusion) Vulnerability
Overview:

phpList 3.5.0 allows type juggling for admin login bypass because is used instead of for password hashes which mishandles hashes that begin with 0e followed by exclusively numerical characters.