Observable Discrepancy
Overview Affected versions of this package are vulnerable to Observable Discrepancy in the authentication process, when Multi-Attribute Login is enabled. An attacker can determine the existence of valid usernames by observing distinct error messages returned by the system in response to login...