github.com/matrix-org/dendrite is vulnerable to authorization bypass. The vulnerability exists in the events_default
level in m.room.power_levels
events of eventcontent.go
when defaulting the event default power level to zero in all cases, resulting in events either being incorrectly authorized or rejected by dendrite servers.