EUVD-2022-48192

Malicious code in bioql PyPI...

CVE-2022-45292

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted...

CVE-2022-45292

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted...

Design/Logic Flaw

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted...

CVE-2022-45292

CVE-2022-45292 affects Funkwhale v1.2.8. The vulnerability is that user invites do not permanently expire after signup and invites can be reused after the associated account is deleted, enabling potential reuse of invitations and account abuse. The connected PT-2022-27460 entry provides the affec...

CVE-2022-45292

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted...

CVE-2022-45292

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted...

Funkwhale 安全漏洞

Funkwhale is a federated, free and social music server by Funkwhale, Inc. Designed to help you enjoy music and discover new creators and artists. A security vulnerability exists in Funkwhale v1.2.8 that stems from the fact that user invitations do not expire permanently after being used for...

PT-2022-27460 · Funkwhale · Funkwhale

Name of the Vulnerable Software and Affected Versions: Funkwhale version 1.2.8 Description: The issue concerns user invites that do not permanently expire after being used for signup. These invites can be used again even after an account associated with the invite has been deleted. Recommendation...