Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-328

CWE-328

Use of Weak Hash

Parent: CWE-326 - Inadequate Encryption Strength

The product uses an algorithm that produces a digest (output value) that does not meet security expectations for a hash function that allows an adversary to reasonably determine the original input (preimage attack), find another input that can produce the same hash (2nd preimage attack), or find multiple inputs that evaluate to the same hash (birthday attack).

56 vulnerabilities with CWE-328

CVE-2026-7103 LOW

code-projects Chat System MD5 Hash update_user.php weak hash

CVE-2026-40164 HIGH

jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed

CVE-2026-32129 HIGH

soroban-poseidon - Hash Collision

CVE-2026-27754 MEDIUM

SODOLA SL902-SWTGW124AS Firmware <200.1.20 - Auth Bypass

CVE-2025-41762 MEDIUM

wwwdnload.cgi - Info Disclosure

CVE-2025-14636 LOW

Tenda AX9 22.03.01.46 - Weak Hash

CVE-2025-11650 LOW

Furbo Mini Firmware < 074 - Broken Cryptographic Algorithm

CVE-2025-59354 MEDIUM

Dragonfly <2.1.0 - Info Disclosure

CVE-2025-9078 MEDIUM

Mattermost <10.8.4 - Info Disclosure

CVE-2025-55053 MEDIUM

Weak Hash - Info Disclosure

CVE-2025-9383 LOW

FNKvision Y215 CCTV Camera - Weak Hash

CVE-2025-54535 MEDIUM

JetBrains TeamCity <2025.07 - Info Disclosure

CVE-2025-8260 LOW

Vaelsys - Broken Cryptographic Algorithm

CVE-2025-41256 HIGH

Cyberduck <9.1.6 - Mountain Duck <4.17.5 - TLS Pinning Weakness

CVE-2025-49197 MEDIUM

FTP App - Info Disclosure

CVE-2025-48931 LOW

TeleMessage <2025-05-05 - Info Disclosure

CVE-2025-41652 CRITICAL

Devices - Auth Bypass

CVE-2025-47276 HIGH

Actualizer <1.2.0 - Info Disclosure

CVE-2025-3576 MEDIUM

MIT Kerberos - Info Disclosure

CVE-2025-31130 MEDIUM

gitoxide <0.42.0 - Info Disclosure

CVE-2025-2920 LOW

Netis WF-2404 1.1.124EN - Weak Hash

CVE-2025-0508 MEDIUM

SageMaker Workflow - Info Disclosure

CVE-2025-26486 MEDIUM

Beta80 Life 1st Identity Mgr <1.5.2.142 - Info Disclosure

CVE-2025-27595 CRITICAL

Device - Info Disclosure

CVE-2025-21604 MEDIUM

LangChain4j-AIDeepin <3.5.0 - Info Disclosure

Page 1 of 3 Next

Details

Vulnerabilities 56

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy