CNNVD-202512-2819 Information

CNNVD ID

CNNVD-202512-2819

Related CVE

CVE-2023-53894

• CNNVD Published: 2025-12-16

Description (Chinese)

PHP Filesystem Management Tool是Fabrício Seger Kolling个人开发者的一个系统管理工具。 PHP Filesystem Management Tool 1.7.9版本存在安全漏洞，该漏洞源于密码哈希验证中存在松散类型比较，可能导致认证绕过攻击。

Description (English)

PHP Filesystem Management Tool is a system management tool for Fabrício Seger Kolling personal developers. There is a security loophole in version 1.7.9 of PHP Filesystem Management Tool, which stems from a loose type comparison in the password Hashi authentication, which may lead to certification bypassing the attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-16

Last Modified

2026-02-24

References

https://www.dulldusk.com/phpfm/ https://www.exploit-db.com/exploits/51594 https://www.vulncheck.com/advisories/phpfm-authentication-bypass-via-type-juggling-vulnerability