Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Epikur before 20.1.1. The Epikur server contains the checkPasswort() function that, upon user login, checks the submitted password against the user password's MD5 hash stored in the database. It is also compared to a second MD5 hash, which is the same for every user (aka a "Backdoor Password" of 3p1kursupport). If the submitted password matches either one, access is granted.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Epikur 安全漏洞
Vulnerability Description
Epikur是德国Epikur公司的一个为用户提供心理治疗、患者管理等功能的医疗移动应用。 Epikur before 20.1.1 存在安全漏洞,该漏洞源于当用户登录时,该函数根据存储在数据库中的用户密码的MD5哈希检查提交的密码。
CVSS Information
N/A
Vulnerability Type
N/A