Skip to content

IBEXA-SA-2021-007: User can obtain JWT token even if account is disabled

High
glye published GHSA-36mj-6r7r-mqhf Sep 28, 2021

Package

composer ezsystems/ezplatform-rest (Composer)

Affected versions

v1.3.*

Patched versions

v1.3.8

Severity

High

CVE ID

No known CVE

Weaknesses

No CWEs