Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WeBid Incorrect Comparison Vulnerability - CVE-2020-23359 - Vulnerability Database
WeBid

WeBid Incorrect Comparison Vulnerability - CVE-2020-23359

Critical
Reference: CVE-2020-23359
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-23359
Title: WeBid Incorrect Comparison Vulnerability
Overview:

WeBid 1.2.2 admin/newuser.php has an issue with password rechecking during registration because it uses a loose comparison to check the identicalness of two passwords. Two non-identical passwords can still bypass the check.