You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I just find that, in many places of oscommerce v2.3.4.1, the username and password recheck during registration and other processes can be bypassed easily through the magic string in loose comparison, for example "0e11111" == "0e22222" returns Bool(True). If the user sets the username or password to such magic strings, the recheck process using loose comparison (==) does not work at all.
Affected code locations
Hi,
I just find that, in many places of oscommerce v2.3.4.1, the username and password recheck during registration and other processes can be bypassed easily through the
magic string
in loose comparison, for example"0e11111" == "0e22222"
returnsBool(True)
. If the user sets the username or password to such magic strings, the recheck process using loose comparison (==) does not work at all.Affected code locations
and some other files in
catalog/password_reset.php
,catalog/create_account.php
andcatalog/ext/modules/content/account/set_password.php
The text was updated successfully, but these errors were encountered: