-
FYI:
- https://www.openwall.com/lists/oss-security/2024/10/15/9
- https://www.openwall.com/lists/oss-security/2024/10/15/8
I'm opening this as a public issue since my understanding is that these…
-
On the 13th of June 2022 we reported an authentication bypass in this library to @cdbattags.
Due to time constraints on their side we privately provided a patch that should fix the issue on the 29th …
-
Please upgrade to ruby-saml 1.17.0 or 1.12.3
-
White-Jotter v0.2.2 has an authorization bypass vulnerability, allowing unauthorized users to access sensitive system information and even modify critical system data. This vulnerability compromises t…
-
Is it possible to bypass the built in auth methods in case there are other Auth mechanisms in place that you never the lass have to pass until you reach the headlamp frontend?
-
Is there anyway to disable or bypass authentication?
-
**Describe your Environment**
OS: Linux
Paisa Version: 0.7.0
App Variant: Docker
**Vulnerability description**
There is a vulnerability in Paisa's authentication mechanism. When the administrat…
-
This bypass requires you to know the target wallet public key. The idea is simple, login and generate a valid JWT with a different wallet, and then update your own name once.
Capture your own reque…
649 updated
12 months ago
-
**Problem**
Currently, all protected routes rely on JWT verification for user authentication. It does not handle the scenario where a user signs up or logs in using Google (Firebase). As a result, …
-
### Suggestion
As the title suggests; allow adding DNS records to the whitelist.
### Use case
This would be helpful for people using DDNS that needs access. If the IP changes the whitelist w…