Vulnerabilities > Pwndoc Project > Pwndoc > 0.2.0

DATE CVE VULNERABILITY TITLE RISK
2022-10-30 CVE-2022-44022 Improper Restriction of Excessive Authentication Attempts vulnerability in Pwndoc Project Pwndoc
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by leveraging response timings for authentication attempts.
network
low complexity
pwndoc-project CWE-307
5.3
5.3
2022-10-30 CVE-2022-44023 Improper Restriction of Excessive Authentication Attempts vulnerability in Pwndoc Project Pwndoc
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by leveraging response messages for authentication attempts.
network
low complexity
pwndoc-project CWE-307
5.3
5.3
2021-07-19 CVE-2021-31590 Unspecified vulnerability in Pwndoc Project Pwndoc 0.1.0/0.2.0/0.3.0
PwnDoc all versions until 0.4.0 (2021-08-23) has incorrect JSON Webtoken handling, leading to incorrect access control.
network
low complexity
pwndoc-project
critical
 9.0
9.0