GHSA-RGMP-4873-R683 Pterodactyl TOTPs can be reused during validity window
Summary When a user signs into an account with 2FA enabled they are prompted to enter a token. When that token is used, it is not sufficiently marked as used in the system allowing an attacker that intercepts that token to then use it in addition to a known username/password during the token...