ibexa/core Security Advisories for v4.0.0-rc1 (2)
-
[CRITICAL] Login timing attack in ibexa/core
PKSA-33kf-45bv-4rz6 GHSA-2x4v-g8cx-jxrq
Affected version: >=4.1.0,<4.1.4|>=4.0.0,<4.0.7
Reported by:
GitHub -
[CRITICAL] Object state limitation has no effect
PKSA-yr3r-6284-yj76 GHSA-gvj8-4cj4-h776
Affected version: >=4.1.0,<4.1.2|>=4.0.0,<4.0.5
Reported by:
GitHub