Account Management Portal
2 CVEs
product
Monthly
A product has missing 2FA rate limiting allowing unlimited brute-force attempts against two-factor authentication codes.
Authentication Bypass
Account Management Portal
NVD
GitHub
VulDB
CVSS 3.1
9.1
EPSS
0.0%
A product has an access control flaw allowing activation token reuse on the password-reset endpoint for unauthorized account takeover.
Authentication Bypass
Account Management Portal
NVD
GitHub
VulDB
CVSS 3.1
9.4
EPSS
0.0%
EPSS 0%
CVSS 9.1
CRITICAL
Act Now
A product has missing 2FA rate limiting allowing unlimited brute-force attempts against two-factor authentication codes.
Authentication Bypass
Account Management Portal
NVD
GitHub
VulDB
EPSS 0%
CVSS 9.4
CRITICAL
Act Now
A product has an access control flaw allowing activation token reuse on the password-reset endpoint for unauthorized account takeover.
Authentication Bypass
Account Management Portal
NVD
GitHub
VulDB