CVE-2022-3152
Unverified Password Change in phpfusion/phpfusionUnverified Password Change in GitHub repository phpfusion/phpfusion prior to 9.10.20.
We have discovered 96 live websites that are affected by CVE-2022-3152.
Affected Software
| Product |  PHPFusion |
| Category | Content Management System |
| Vulnerable Domains | 96 live websites (54% of PHPFusion install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 17 versions ( 85% of all versions) |
Common Weakness Enumeration
CWE-620 Unverified Password ChangeDetails
- Published - Sep 7, 2022
- Updated - Aug 3, 2024
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2022-3152 United States | 19 websites |
 Netherlands | 16 websites |
 Germany | 15 websites |
 GB | 12 websites |
 Poland | 12 websites |
 Czech Republic | 3 websites |
 Denmark | 3 websites |
 Slovakia | 3 websites |
 Hungary | 2 websites |
 Sweden | 2 websites |
Website Distribution by TLD
Number of websites using CVE-2022-3152| .com | 15 websites |
| .eu | 13 websites |
| .de | 10 websites |
| .org | 8 websites |
| .pl | 8 websites |
| .nl | 8 websites |
| .co.uk | 6 websites |
| .dk | 4 websites |
| .net | 4 websites |
| .cz | 2 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2022-3152
Top websites that are affected by CVE-2022-3152. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **********.**.uk | United States | **,*** | |
| *********.com | United States | ***,*** | |
| *****.nu | Sweden | *,***,*** | |
| *******.****.org | Netherlands | *,***,*** | |
| *********.org | United States | *,***,*** | |
| *******.***.la |  Laos | *,***,*** | |
| **********.**.uk | GB | *,***,*** | |
| *********.com |  France | *,***,*** | |
| ******.ro |  Romania | *,***,*** | |
| *********.pl | Poland | *,***,*** |
FAQ
CVE-2022-3152 is Unverified Password Change in PHPFusion
A total of 96 websites have been identified as vulnerable to CVE-2022-3152, based on global website indexing conducted by WebTechSurvey.
The PHPFusion is affected by the CVE-2022-3152 vulnerability.
PHPFusion versions up to 9.10.20 are vulnerable to CVE-2022-3152.
CVE-2022-3152 is resolved in version 9.10.20 of PHPFusion.