VYPR

RubyGems package

sorcery

pkg:gem/sorcery

Vulnerabilities (1)

  • CVE-2020-11052May 7, 2020
    affected < 0.15.0fixed 0.15.0

    In Sorcery before 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. The brute force protection submodule will prevent a brute force attack for the defined lockout period, but once expired, protection will not be re-enabled until a user o