VYPR

RubyGems package

omniauth-apple

pkg:gem/omniauth-apple

Vulnerabilities (1)

  • CVE-2020-26254HigDec 8, 2020
    affected < 1.0.1fixed 1.0.1

    omniauth-apple is the OmniAuth strategy for "Sign In with Apple" (RubyGem omniauth-apple). In omniauth-apple before version 1.0.1 attackers can fake their email address during authentication. This vulnerability impacts applications using the omniauth-apple strategy of OmniAuth an