2 matches found
CVE-2019-1020002
Pterodactyl before 0.7.14 with 2FA allows credential sniffing...
CVE-2019-1020002
CVE-2019-1020002 affects the Pterodactyl Panel before 0.7.14, where a logic error causes credentials/sniffing of 2FA credentials by delaying password verification until after 2FA input. Reported as enabling an attacker to infer account existence under certain login flows (0.7.13 and earlier). The...