Lucene search

K

CVE-2024-9014 OAuth2 client id and secret exposed through the web browser in pgAdmin 4

🗓️ 23 Sep 2024 17:00:04Reported by PostgreSQLType 
cvelist
 cvelist
🔗 www.cve.org👁 50 Views

Security flaw in pgAdmin 4 OAuth2

Show more
Related
Affected
Refs
[
  {
    "defaultStatus": "affected",
    "modules": [
      "User Authentication"
    ],
    "product": "pgAdmin 4",
    "programFiles": [
      "https://github.com/pgadmin-org/pgadmin4/blob/master/web/pgadmin/templates/security/login_user.html"
    ],
    "repo": "https://github.com/pgadmin-org/pgadmin4",
    "vendor": "pgadmin.org",
    "versions": [
      {
        "lessThan": "8.12",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
23 Sep 2024 17:04Current
CVSS39.9
EPSS0.009
50
.json
Report