GHSA-j85q-whc9-g4p9

GitHub Security Advisory

Use of Cryptographically Weak Pseudo-Random Number Generator in showdoc

✓ GitHub Reviewed MODERATE Has CVE

showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Packagist showdoc/showdoc

Affected versions: 0 (fixed in 2.9.8)

CVE-2021-3678

GHSA ID

GHSA-j85q-whc9-g4p9

Published

September 2, 2021 5:07 PM

Last Modified

August 16, 2021 11:13 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

showdoc/showdoc

GitHub Reviewed

✓ Yes

Last updated: September 17, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.