exploitDog

GHSA-cq78-fwr5-c2h7

Опубликовано: 21 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token.

An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token.

Ссылки

EPSS

Процентиль: 19%

0.00059

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2024-50641

CVSS3: 8.1

nvd

6 месяцев назад

An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token.

EPSS

Процентиль: 19%

0.00059

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-287