Hard-coded Admin Hashes Stored in MonoCMS Blog 1.0's log.xml File

Hard-coded Admin Hashes Stored in MonoCMS Blog 1.0's log.xml File

CVE-2020-25987 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

MonoCMS Blog 1.0 stores hard-coded admin hashes in the log.xml file in the source files for MonoCMS Blog. Hash type is bcrypt and hashcat mode 3200 can be used to crack the hash.

Learn more about our Cms Pen Testing.