Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce cryptographically strong random numbers, which allows attackers to leverage exposures in products that rely on these functions for security-relevant functionality, as demonstrated by the password-reset functionality in Joomla! 1.5.x and WordPress before 2.6.2, a different vulnerability than CVE-2008-2107, CVE-2008-2108, and CVE-2008-4102.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP 数字错误漏洞
Vulnerability Description
PHP 5.2.6的(1) rand 和 (2) mt_rand 函数不能产生保密性强的随机数字,攻击者可以通过破解此类函数产生的安全防护功能来接触依赖此功能的产品,例如,Joomla! 1.5.x 和 WordPress 2.6.2之前版本中的password-reset功能。
CVSS Information
N/A
Vulnerability Type
N/A