Moderate severity vulnerability that affects doorkeeper

GHSA-5p9f-55j8-922m

Published Aug 13, 2018 · Modified Dec 2, 2024

Description

Withdrawn, accidental duplicate publish.

The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2016-6582
ADVISORY https://github.com/advisories/GHSA-5p9f-55j8-922m

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes