NPM: Auth.js SDK has Improper Permission Checking

NPM: Auth.js SDK has Improper Permission Checking vulnerability discovered by ? in WordPress Npm auth0-js versions = 8.11.0, = 9.32.0...

CVE-2023-51665

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.7.0, Audiobookshelf is vulnerable to unauthenticated blind server-side request SSRF vulnerability in Auth.js. This vulnerability has been addressed in version 2.7.0. There are no known workarounds for this vulnerability...

Server side request forgery (ssrf)

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.7.0, Audiobookshelf is vulnerable to unauthenticated blind server-side request SSRF vulnerability in Auth.js. This vulnerability has been addressed in version 2.7.0. There are no known workarounds for this vulnerability...

CVE-2023-51665 Audiobookshelf vulnerable to Blind SSRF in `Auth.js`

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.7.0, Audiobookshelf is vulnerable to unauthenticated blind server-side request SSRF vulnerability in Auth.js. This vulnerability has been addressed in version 2.7.0. There are no known workarounds for this vulnerability...

CVE-2023-51665

Audiobookshelf (self-hosted audiobook/podcast server) is affected by an unauthenticated blind SSRF in Auth.js prior to version 2.7.0. The issue has a fixed version: 2.7.0. Exploitation details are not provided in the sources; no in-wild exploitation status is stated. Remediation is to upgrade to ...

Audiobookshelf Code Issue Vulnerability

Audiobookshelf is a self-hosted audiobook and podcast server from audiobookshelf open source. A code issue vulnerability exists in Audiobookshelf versions prior to 2.7.0, which stems from a Server Request Forgery SSRF vulnerability in Auth.js...