-
The settings page should provide an easy to navigate setting section that can control each aspect of the software individually without obscuring anything to the user. The layout of the page should be …
-
# User Login via Email and Password
## User Story
As a user, I want to log in to the platform using my email and password so that I can securely access my account and view my sensor data.
## D…
-
Not supported currently.
-
This was originally reported to ZAP via BugCrowd.
We rated it as a LOW vulnerability and gave the reporter permission to disclose it, which they have done as [CVE-2022-27820](https://nvd.nist.gov/v…
-
There are two problem to that can be (partly) solved with rate-limiting, or at least make heimdal more robust.
1. To prevent (on-line) bruteforce attacks against a known principal
2. To evade/handle…
-
The protocol currently has several security weaknesses that should be addressed:
- [x] 1. The initial handshake is neither encrypted, nor authenticated
- [ ] 2. Message headers are not encrypted
…
-
Currently, `core:TargetedID` uses SHA1 to compute the `eduPersonTargetedID` attribute corresponding to a given user. Part of the input to the hash function is _user provided_ (the attribute configured…
-
I'm opening this issue so that we can discuss which endpoint we need on our project and what to expect from each endpoint
-
Summary:
- The order in which 2FA and user/password credentials are validated seems incorrect and provides an attacker more insight than what they should be privy to. Server response to a success…
-
The route is known, but it is not in the database of cameradar. Here is the official forum:
https://support.reolink.com/hc/en-us/articles/360007010473-How-to-Live-View-Reolink-Cameras-via-VLC-Media-P…