RSS   Podatności dla 'Magento2'   RSS

2017-03-01
 
CVE-2016-6485

CWE-327
 

 
The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by guessing the value.

 

 >>> Vendor: Magento 6 Produkty
E-commerce
Magento
Magento2
Advanced newsletter
Upward connector
Upward php


Copyright 2024, cxsecurity.com

 

Back to Top