8 matches found
Bookwyrm v0.4.3 - Authentication Bypass Vulnerability
Exploit Title: Bookwyrm v0.4.3 - Authentication Bypass Exploit Author: Akshay Ravi Vendor Homepage: https://github.com/bookwyrm-social/bookwyrm Software Link: https://github.com/bookwyrm-social/bookwyrm/releases/tag/v0.4.3 Version: = 4.0.3 Tested on: MacOS Monterey CVE: CVE-2022-2651 Original...
Bookwyrm 0.4.3 Authentication Bypass
Exploit Title: Bookwyrm v0.4.3 - Authentication Bypass Date: 2022-08-4 Exploit Author: Akshay Ravi Vendor Homepage: https://github.com/bookwyrm-social/bookwyrm Software Link: https://github.com/bookwyrm-social/bookwyrm/releases/tag/v0.4.3 Version: = 4.0.3 Tested on: MacOS Monterey CVE:...
Bookwyrm v0.4.3 - Authentication Bypass
Exploit Title: Bookwyrm v0.4.3 - Authentication Bypass Date: 2022-08-4 Exploit Author: Akshay Ravi Vendor Homepage: https://github.com/bookwyrm-social/bookwyrm Software Link: https://github.com/bookwyrm-social/bookwyrm/releases/tag/v0.4.3 Version: = 4.0.3 Tested on: MacOS Monterey CVE:...
CVE-2022-2651
creationtimestamp| type| source ---|---|--- 2022-08-04 12:19:23+00:00| seen| https://t.me/cibsecurity/47534 2022-09-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51013...
CVE-2022-2651
Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5...
CVE-2022-2651 Authentication Bypass by Primary Weakness in bookwyrm-social/bookwyrm
Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5...
CVE-2022-2651 Authentication Bypass by Primary Weakness in bookwyrm-social/bookwyrm
Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5...
CVE-2022-2651
Bookwyrm (bookwyrm-social/bookwyrm) prior to 0.4.5 has an authentication bypass vulnerability linked to lack of rate limiting on the email verification flow. The public CVE describes an Authentication Bypass by Primary Weakness in the repository, with evidence of a bypass through the email confir...