{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T18:21:06.562","vulnerabilities":[{"cve":{"id":"CVE-2023-40173","sourceIdentifier":"security-advisories@github.com","published":"2023-08-18T22:15:11.127","lastModified":"2024-11-21T08:18:55.597","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Social media skeleton is an uncompleted/framework social media project implemented using a php, css ,javascript and html. Prior to version 1.0.5 Social media skeleton did not properly salt passwords leaving user passwords susceptible to cracking should an attacker gain access to hashed passwords. This issue has been addressed in version 1.0.5 and users are advised to upgrade. There are no known workarounds for this issue."},{"lang":"es","value":"Social media skeleton es un proyecto/framework de social media sin completar implementado usando php, css, javascript y html. Antes de la versión 1.0.5 Social media skeleton no salteaba correctamente las contraseñas dejando las contraseñas de los usuarios susceptibles de ser crackeadas si un atacante obtenía acceso a las contraseñas salteadas. Este problema se ha solucionado en la versión 1.0.5 y se recomienda a los usuarios que la actualicen. No se conocen soluciones para este problema. "}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-522"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:fobybus:social-media-skeleton:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.5","matchCriteriaId":"C6B65799-63F2-4F3B-B6F8-BF9DD02EAB93"}]}]}],"references":[{"url":"https://github.com/fobybus/social-media-skeleton/commit/344d798e82d6cc39844962c6d3cb2560f5907848","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/fobybus/social-media-skeleton/commit/df31da44ffed3ea065cbbadc3c8052d0d489a2ef","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/fobybus/social-media-skeleton/security/advisories/GHSA-rfmv-7m7g-v628","source":"security-advisories@github.com","tags":["Third Party Advisory"]},{"url":"https://github.com/fobybus/social-media-skeleton/commit/344d798e82d6cc39844962c6d3cb2560f5907848","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/fobybus/social-media-skeleton/commit/df31da44ffed3ea065cbbadc3c8052d0d489a2ef","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/fobybus/social-media-skeleton/security/advisories/GHSA-rfmv-7m7g-v628","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}