Security
Headlines

Headlines Latest CVEs

Headline

GHSA-xv59-gc3r-rf92: Insufficient Session Expiration in Nakama

Old session tokens can be used to authenticate to the application and send authenticated requests.

2 years ago

Insufficient Session Expiration in Nakama

High severity GitHub Reviewed Published Jul 6, 2022 • Updated Jul 6, 2022

Related news

CVE-2022-2306: Correctly console session token on all logouts. (#875) · heroiclabs/nakama@ce8d392

Old session tokens can be used to authenticate to the application and send authenticated requests.

2 years ago

ghsa: Latest News

GHSA-27wf-5967-98gx: Kubernetes kubelet arbitrary command execution

1 day ago

GHSA-mr95-vfcf-fx9p: Apache Answer: Predictable Authorization Token Using UUIDv1

1 day ago

GHSA-pqhp-25j4-6hq9: smol-toml has a Denial of Service via malicious TOML document using deeply nested inline tables

1 day ago

GHSA-v5h2-q2w4-gpcx: Sentry improper error handling leaks Application Integration Client Secret

1 day ago

GHSA-8w49-h785-mj3c: Tornado has an HTTP cookie parsing DoS vulnerability

1 day ago