VYPR

Sorcery

by Sorcery

gem: sorcery

Source repositories

CVEs (1)

  • CVE-2020-11052May 7, 2020
    risk 0.00cvss epss 0.02

    In Sorcery before 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. The brute force protection submodule will prevent a brute force attack for the defined lockout period, but once expired, protection will not be re-enabled until a user…