Public scan reportRepository
quantumscan-io/vulnerable-demo-repo
Scanned on Jun 10, 2026
89
Risk score/ 100
Critical risk
Summary
This repository contains critical cryptographic vulnerabilities with 21 instances of broken algorithms (MD5, 3DES, DES) and 22 quantum-vulnerable implementations (RSA, ECDSA, ECDH). All 8 scanned files contain security issues that expose the system to both current cryptographic attacks and future quantum computing threats.
Critical
21
High
22
Medium
2
Low
1
Top findings
- CriticalDES
python/weak_cipher.py:8
Raw evidence
cipher = DES.new(key, DES.MODE_ECB) - Critical3DES / TripleDES
python/weak_cipher.py:12
Raw evidence
def encrypt_3des(data: bytes, key: bytes) -> bytes: - CriticalMD5
javascript/weak-crypto.js:7
SHA3-256 or SHA-256
Raw evidence
return crypto.createHash("md5").update(input).digest("hex"); - CriticalRC4 / ARCFOUR
python/weak_cipher.py:20
Raw evidence
cipher = ARC4.new(key) - CriticalAES-ECB (no IV)
python/weak_cipher.py:26
AES-GCM or ChaCha20-Poly1305
Raw evidence
cipher = AES.new(key, AES.MODE_ECB)
+ 41 more findings in the full report
Scan your own repository
Free. Results in ~90 seconds. CBOM + DORA/NIS2 PDF included.