phpList Incorrect Comparison Vulnerability - CVE-2020-23361
phpList 3.5.3 allows type juggling for login bypass because is used instead of for password hashes which mishandles hashes that begin with 0e followed by exclusively numerical characters.
phpList 3.5.3 allows type juggling for login bypass because is used instead of for password hashes which mishandles hashes that begin with 0e followed by exclusively numerical characters.