Количество 4
Количество 4
CVE-2025-65430
An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as is_active=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected.
CVE-2025-65430
An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as is_active=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected.
CVE-2025-65430
An issue was discovered in allauth-django before 65.13.0. IdP: marking ...
GHSA-qhmc-3mvr-f2j4
django-allauth does not reject access tokens for inactive users
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-65430 An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as is_active=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected. | CVSS3: 5.4 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-65430 An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as is_active=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected. | CVSS3: 5.4 | 0% Низкий | около 2 месяцев назад |
| CVE-2025-65430 An issue was discovered in allauth-django before 65.13.0. IdP: marking ... | CVSS3: 5.4 | 0% Низкий | около 2 месяцев назад |
| GHSA-qhmc-3mvr-f2j4 django-allauth does not reject access tokens for inactive users | CVSS3: 5.4 | 0% Низкий | около 2 месяцев назад |
Уязвимостей на страницу