phpList Access of Resource Using Incompatible Type (Type Confusion) Vulnerability - CVE-2020-8547
phpList 3.5.0 allows type juggling for admin login bypass because is used instead of for password hashes which mishandles hashes that begin with 0e followed by exclusively numerical characters.