Description
In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00), testing a blank string as the password via password_verify() will incorrectly return true.
Remediation
References
Related Vulnerabilities
OpenSSL Cryptographic Issues Vulnerability (CVE-2010-0928)
WordPress Plugin Controlled Admin Access Security Bypass (1.5.5)
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0327)
Joomla! Core 3.x.x Multiple Vulnerabilities (3.2.0 - 3.6.5)
WordPress Plugin Ultimate TinyMCE 'swfupload.swf' Cross-Site Scripting (3.5)