[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-0567":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":93,"aliases":103,"duplicate_of":9,"upstream":104,"downstream":105,"duplicates":138,"related":139,"reserved_at":9,"published_at":146,"modified_at":147,"state":148,"summary":149,"references_raw":157,"kevs":173,"epss":174,"epss_history":177,"metrics":447,"affected":459},"CVE-2023-0567","In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, password_verify() function may accept some invalid Blowfish hashes as valid. If such invalid hash ever ends up in the password database, it may lead to an application allowing any password for this entry as valid.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-916","Use of Password Hash With Insufficient Computational Effort","The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive.","weakness","Incomplete","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-55","Rainbow Table Password Cracking",[23],{"id":24,"name":25,"tactics":26,"countermeasures":30},"T1110.002","Password Cracking",[27],{"id":28,"name":29},"TA0031","Credential Access",[31,36,41,45,50,55,59,63,67,71,75,79,83,88],{"id":32,"name":33,"tactic":34},"D3-CCSA","Credential Compromise Scope Analysis",{"name":35},"Detect",{"id":37,"name":38,"tactic":39},"D3-CR","Credential Revocation",{"name":40},"Evict",{"id":42,"name":43,"tactic":44},"D3-ANCI","Authentication Cache Invalidation",{"name":40},{"id":46,"name":47,"tactic":48},"D3-DUC","Decoy User Credential",{"name":49},"Deceive",{"id":51,"name":52,"tactic":53},"D3-CH","Credential Hardening",{"name":54},"Harden",{"id":56,"name":57,"tactic":58},"D3-MFA","Multi-factor Authentication",{"name":54},{"id":60,"name":61,"tactic":62},"D3-CRO","Credential Rotation",{"name":54},{"id":64,"name":65,"tactic":66},"D3-PR","Password Rotation",{"name":54},{"id":68,"name":69,"tactic":70},"D3-PWA","Password Authentication",{"name":54},{"id":72,"name":73,"tactic":74},"D3-CDP","Change Default Password",{"name":54},{"id":76,"name":77,"tactic":78},"D3-SPP","Strong Password Policy",{"name":54},{"id":80,"name":81,"tactic":82},"D3-OTP","One-time Password",{"name":54},{"id":84,"name":85,"tactic":86},"D3-RIC","Reissue Credential",{"name":87},"Restore",{"id":89,"name":90,"tactic":91},"D3-CTS","Credential Transmission Scoping",{"name":92},"Isolate",[94],{"_key":95,"name":96,"source":97,"url":98,"maturity":99,"reliability_score":100,"verified":101,"type":9,"platforms":102,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_PHP_PHP-SRC","Php Src","github","https://github.com/php/php-src/commit/fb58e69a84f4fde603a630d2c9df2fa3be16d846","poc",0.3,false,[],[],[],[106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136],{"_key":107},"OPENSUSE-SU-2024:12711-1",{"_key":109},"SUSE-SU-2023:0515-1",{"_key":111},"SUSE-SU-2023:0476-1",{"_key":113},"SUSE-SU-2023:0513-1",{"_key":115},"SUSE-SU-2023:0514-1",{"_key":117},"DLA-3345-1",{"_key":119},"DSA-5363-1",{"_key":121},"RHSA-2023:5926",{"_key":123},"RHSA-2023:5927",{"_key":125},"RHSA-2024:0387",{"_key":127},"RHSA-2024:10952",{"_key":129},"MGASA-2023-0065",{"_key":131},"UBUNTU-CVE-2023-0567",{"_key":133},"USN-5902-1",{"_key":135},"DEBIAN-CVE-2023-0567",{"_key":137},"USN-6053-1",[],[140,141,142,143,144,145],{"_key":107},{"_key":109},{"_key":111},{"_key":113},{"_key":115},{"_key":129},"2023-02-16T06:15:50.127Z","2024-08-02T05:17:50.104Z","Modified",{"cisa_kev":101,"cisa_ransomware":101,"cisa_vendor":9,"epss_severity":150,"epss_score":151,"severity":152,"severity_score":153,"severity_version":154,"severity_source":155,"severity_vector":156,"severity_status":148},"low",0.00142,"high",7.7,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",[158,164,169],{"url":159,"sources":160,"tags":162},"https://bugs.php.net/bug.php?id=81744",[155,161],"nvd",[163],"Vendor Advisory",{"url":165,"sources":166,"tags":167},"https://github.com/php/php-src/security/advisories/GHSA-7fj2-8x79-rjf4",[155,161],[168,163],"Exploit",{"url":170,"sources":171,"tags":172},"https://security.netapp.com/advisory/ntap-20230331-0008/",[155,161],[],[],{"date":175,"score":151,"percentile":176},"2026-06-04",0.33991,[178,182,185,188,191,194,197,200,203,206,209,212,215,218,221,225,228,231,234,237,240,243,245,248,251,254,256,259,262,265,268,271,274,277,280,283,286,289,292,295,299,302,305,308,311,314,317,320,323,326,329,332,335,338,342,345,348,351,353,356,358,361,364,367,370,373,376,379,382,385,388,391,393,396,399,402,406,409,412,415,418,421,424,427,430,432,435,438,441,444],{"date":179,"score":180,"percentile":181},"2025-11-04",0.00033,0.08579,{"date":183,"score":180,"percentile":184},"2025-11-05",0.08591,{"date":186,"score":180,"percentile":187},"2025-11-06",0.08709,{"date":189,"score":180,"percentile":190},"2025-11-07",0.08727,{"date":192,"score":180,"percentile":193},"2025-11-08",0.08723,{"date":195,"score":180,"percentile":196},"2025-11-09",0.08691,{"date":198,"score":180,"percentile":199},"2025-11-10",0.08653,{"date":201,"score":180,"percentile":202},"2025-11-11",0.08683,{"date":204,"score":180,"percentile":205},"2025-11-12",0.08725,{"date":207,"score":180,"percentile":208},"2025-11-13",0.08768,{"date":210,"score":180,"percentile":211},"2025-11-14",0.08815,{"date":213,"score":180,"percentile":214},"2025-11-15",0.08842,{"date":216,"score":180,"percentile":217},"2025-11-16",0.08846,{"date":219,"score":180,"percentile":220},"2025-11-17",0.08839,{"date":222,"score":223,"percentile":224},"2025-11-18",0.0005,0.10994,{"date":226,"score":223,"percentile":227},"2025-11-19",0.11011,{"date":229,"score":223,"percentile":230},"2025-11-20",0.11036,{"date":232,"score":180,"percentile":233},"2025-11-21",0.08923,{"date":235,"score":180,"percentile":236},"2025-11-22",0.08852,{"date":238,"score":180,"percentile":239},"2025-11-23",0.08827,{"date":241,"score":180,"percentile":242},"2025-11-24",0.0882,{"date":244,"score":180,"percentile":211},"2025-11-25",{"date":246,"score":180,"percentile":247},"2025-11-26",0.08822,{"date":249,"score":180,"percentile":250},"2025-11-27",0.08832,{"date":252,"score":180,"percentile":253},"2025-11-28",0.08808,{"date":255,"score":180,"percentile":214},"2025-11-29",{"date":257,"score":180,"percentile":258},"2025-11-30",0.0885,{"date":260,"score":180,"percentile":261},"2025-12-01",0.08895,{"date":263,"score":180,"percentile":264},"2025-12-02",0.08912,{"date":266,"score":180,"percentile":267},"2025-12-03",0.08943,{"date":269,"score":180,"percentile":270},"2025-12-04",0.08941,{"date":272,"score":180,"percentile":273},"2025-12-05",0.08995,{"date":275,"score":180,"percentile":276},"2025-12-06",0.09011,{"date":278,"score":180,"percentile":279},"2025-12-07",0.09017,{"date":281,"score":180,"percentile":282},"2025-12-08",0.0902,{"date":284,"score":180,"percentile":285},"2025-12-09",0.09086,{"date":287,"score":180,"percentile":288},"2025-12-10",0.09159,{"date":290,"score":180,"percentile":291},"2025-12-11",0.09193,{"date":293,"score":180,"percentile":294},"2025-12-12",0.09215,{"date":296,"score":297,"percentile":298},"2025-12-13",0.00035,0.10038,{"date":300,"score":297,"percentile":301},"2025-12-14",0.10027,{"date":303,"score":297,"percentile":304},"2025-12-15",0.09954,{"date":306,"score":297,"percentile":307},"2025-12-16",0.0994,{"date":309,"score":297,"percentile":310},"2025-12-17",0.10019,{"date":312,"score":297,"percentile":313},"2025-12-18",0.10072,{"date":315,"score":297,"percentile":316},"2025-12-19",0.10094,{"date":318,"score":297,"percentile":319},"2025-12-20",0.10085,{"date":321,"score":297,"percentile":322},"2025-12-21",0.1007,{"date":324,"score":297,"percentile":325},"2025-12-22",0.10045,{"date":327,"score":297,"percentile":328},"2025-12-23",0.0999,{"date":330,"score":297,"percentile":331},"2025-12-24",0.09992,{"date":333,"score":297,"percentile":334},"2025-12-25",0.10074,{"date":336,"score":297,"percentile":337},"2025-12-26",0.10067,{"date":339,"score":340,"percentile":341},"2025-12-27",0.00039,0.11692,{"date":343,"score":297,"percentile":344},"2025-12-28",0.10078,{"date":346,"score":297,"percentile":347},"2025-12-29",0.10035,{"date":349,"score":297,"percentile":350},"2025-12-30",0.10017,{"date":352,"score":297,"percentile":322},"2025-12-31",{"date":354,"score":297,"percentile":355},"2026-01-01",0.10108,{"date":357,"score":297,"percentile":355},"2026-01-02",{"date":359,"score":297,"percentile":360},"2026-01-03",0.10076,{"date":362,"score":297,"percentile":363},"2026-01-04",0.09999,{"date":365,"score":297,"percentile":366},"2026-01-05",0.09962,{"date":368,"score":297,"percentile":369},"2026-01-06",0.09957,{"date":371,"score":297,"percentile":372},"2026-01-07",0.09989,{"date":374,"score":297,"percentile":375},"2026-01-08",0.1004,{"date":377,"score":297,"percentile":378},"2026-01-09",0.10069,{"date":380,"score":297,"percentile":381},"2026-01-10",0.10098,{"date":383,"score":297,"percentile":384},"2026-01-11",0.10046,{"date":386,"score":297,"percentile":387},"2026-01-12",0.10024,{"date":389,"score":297,"percentile":390},"2026-01-13",0.09986,{"date":392,"score":297,"percentile":298},"2026-01-14",{"date":394,"score":297,"percentile":395},"2026-01-15",0.10049,{"date":397,"score":297,"percentile":398},"2026-01-16",0.10083,{"date":400,"score":297,"percentile":401},"2026-01-17",0.10101,{"date":403,"score":404,"percentile":405},"2026-01-18",0.00036,0.10471,{"date":407,"score":404,"percentile":408},"2026-01-19",0.1042,{"date":410,"score":404,"percentile":411},"2026-01-20",0.10395,{"date":413,"score":404,"percentile":414},"2026-01-21",0.10359,{"date":416,"score":404,"percentile":417},"2026-01-22",0.10353,{"date":419,"score":404,"percentile":420},"2026-01-23",0.10447,{"date":422,"score":404,"percentile":423},"2026-01-24",0.10499,{"date":425,"score":404,"percentile":426},"2026-01-25",0.10455,{"date":428,"score":404,"percentile":429},"2026-01-26",0.10411,{"date":431,"score":404,"percentile":411},"2026-01-27",{"date":433,"score":404,"percentile":434},"2026-01-28",0.10372,{"date":436,"score":404,"percentile":437},"2026-01-29",0.10356,{"date":439,"score":404,"percentile":440},"2026-01-30",0.10371,{"date":442,"score":404,"percentile":443},"2026-01-31",0.10387,{"date":445,"score":404,"percentile":446},"2026-02-01",0.10394,[448,453],{"source":155,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":449,"cvss_v4_0":9},{"baseScore":153,"baseSeverity":450,"vectorString":156,"impactScore":451,"exploitabilityScore":452},"HIGH",8.7,6.4,{"source":161,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":454,"cvss_v4_0":9},{"baseScore":455,"baseSeverity":456,"vectorString":457,"impactScore":458,"exploitabilityScore":452},6.2,"MEDIUM","CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",6,[460,478],{"ecosystem":9,"name":461,"vendor":9,"product":461,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":462},"PHP",[463,470,474],{"version":464,"is_range":465,"range_type":155,"version_start":466,"version_start_type":467,"version_end":468,"version_end_type":469,"fixed_in":9},">= 8.0.x, \u003C 8.0.28",true,"8.0.x","including","8.0.28","excluding",{"version":471,"is_range":465,"range_type":155,"version_start":472,"version_start_type":467,"version_end":473,"version_end_type":469,"fixed_in":9},">= 8.1.x, \u003C 8.1.16","8.1.x","8.1.16",{"version":475,"is_range":465,"range_type":155,"version_start":476,"version_start_type":467,"version_end":477,"version_end_type":469,"fixed_in":9},">= 8.2.x, \u003C 8.2.3","8.2.x","8.2.3",{"ecosystem":9,"name":461,"vendor":9,"product":461,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":479},[480,484,487],{"version":481,"is_range":465,"range_type":482,"version_start":483,"version_start_type":467,"version_end":468,"version_end_type":469,"fixed_in":9},"gte8.0.0_lt8.0.28","cpe","8.0.0",{"version":485,"is_range":465,"range_type":482,"version_start":486,"version_start_type":467,"version_end":473,"version_end_type":469,"fixed_in":9},"gte8.1.0_lt8.1.16","8.1.0",{"version":488,"is_range":465,"range_type":482,"version_start":489,"version_start_type":467,"version_end":477,"version_end_type":469,"fixed_in":9},"gte8.2.0_lt8.2.3","8.2.0"]