CVE-2026-25235

Publication date

2026-02-03 18:29:39

Family

GitHub_M

State

PUBLISHED

Description

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, predictable verification hashes may allow attackers to guess verification tokens and potentially verify election account requests without authorization. This issue has been patched in version 1.33.0.