exploitDog

GHSA-w9c3-h2rq-jrff

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

In Discourse 2.7.0 through beta1, a rate-limit bypass leads to a bypass of the 2FA requirement for certain forms.

In Discourse 2.7.0 through beta1, a rate-limit bypass leads to a bypass of the 2FA requirement for certain forms.

Ссылки

EPSS

Процентиль: 85%

0.02655

Низкий

CVE ID

Дефекты

CWE-307

Связанные уязвимости

CVE-2021-3138

CVSS3: 7.5

nvd

около 5 лет назад

In Discourse 2.7.0 through beta1, a rate-limit bypass leads to a bypass of the 2FA requirement for certain forms.

EPSS

Процентиль: 85%

0.02655

Низкий

CVE ID

Дефекты

CWE-307