Vulnerabilities > Scratchverifier

DATE CVE VULNERABILITY TITLE RISK
2020-11-20 CVE-2020-26236 Improper Authentication vulnerability in Scratchverifier
In ScratchVerifier before commit a603769, an attacker can hijack the verification process to log into someone else's account on any site that uses ScratchVerifier for logins.
network
high complexity
scratchverifier CWE-287
5.1
5.1