9 matches found
EUVD-2024-1186
Malicious code in bioql PyPI...
CVE-2024-32003
wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...
Dusk plugin may allow unfettered user authentication in misconfigured installs
The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having to go through authentication. This route is URL/dusk/login/USER ID/MANAGER - where URL is the base URL...
GHSA-CHCP-G9J5-3XXX Dusk plugin may allow unfettered user authentication in misconfigured installs
The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having to go through authentication. This route is URL/dusk/login/USER ID/MANAGER - where URL is the base URL...
CVE-2024-32003
wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...
CVE-2024-32003 Dusk plugin may allow unfettered user authentication in misconfigured installs
wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...
CVE-2024-32003 Dusk plugin may allow unfettered user authentication in misconfigured installs
wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...
Dusk Plugin 安全漏洞
Dusk Plugin is a plugin that provides support for the Laravel Dusk testing paradigm. A security vulnerability exists in Dusk Plugin that originates from allowing routing to gain access to any user account...
PT-2024-24353 · Winter Cms · Wn-Dusk-Plugin
Name of the Vulnerable Software and Affected Versions: wn-dusk-plugin versions prior to 2.1.0 Description: The Dusk plugin provides special routes as part of its testing framework, allowing a browser environment to act as a user in the Backend or User plugin without authentication. The route URL/...