PT-2024-39260 · Rubygems +3 · Devise-Two-Factor +3
Name of the Vulnerable Software and Affected Versions: Devise-Two-Factor versions 1.0.0 or = 2.2.0 through = 2.2.0 through 6.0.0, upgrade to version v6.0.0 as soon as possible. If upgrading is not possible, override the default otp secret length attribute in the model when configuring two factor...