Description
WeBid 1.2.2 admin/newuser.php has an issue with password rechecking during registration because it uses a loose comparison to check the identicalness of two passwords. Two non-identical passwords can still bypass the check.
Remediation
References
Related Vulnerabilities
Sqlite Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19925)
Apache Tomcat Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-38286)
WordPress Plugin WP-Ban Security Bypass (1.63)
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11589)