NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-45701

Summary	Sulu is an open-source PHP content management system based on the Symfony framework. Prior to versions 2.6.23 and 3.0.6, the password reset tokenand API key generation uses a weak cryptographical hash algorithm. This issue has been patched in versions 2.6.23 and 3.0.6.
Publication Date	June 2, 2026, 2:17 a.m.
Registration Date	June 2, 2026, 4:18 a.m.
Last Update	June 2, 2026, 3:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/sulu/sulu/releases/tag/2.6.23	security-advisories@github.com
2	https://github.com/sulu/sulu/releases/tag/3.0.6	security-advisories@github.com
3	https://github.com/sulu/sulu/security/advisories/GHSA-7fv8-6pp7-6h85	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-327	不完全、または危険な暗号アルゴリズムの使用	https://cwe.mitre.org/data/definitions/327.html