matrix_sydent is vulnerable to denial of service. Lack of validation of client_secret
and email
parameters allows an attacker to cause excessive usage of disk space and memory via malicious input which can potentially lead to an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
matrix-sydent | le | 2.2.0 | |
matrix-sydent | le | 2.2.0 |