CVE-2026-25861 | QloApps up to 1.7.0 classes/Tools.php Tools::encrypt weak password hash

A vulnerability categorized as problematic has been discovered in QloApps up to 1.7.0. Affected is the function Tools::encrypt of the file classes/Tools.php. Executing a manipulation can lead to password hash with insufficient computational effort.

This vulnerability is handled as CVE-2026-25861. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More