matrix-appservice-bridge@8.1.2 vulnerabilities
Bridging infrastructure for Matrix Application Services
-
latest version
10.1.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
4 months ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the matrix-appservice-bridge package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
matrix-appservice-bridge is a Bridging infrastructure for Matrix Application Services Affected versions of this package are vulnerable to Access Restriction Bypass when using a foreign user's MXID in an OpenID exchange, allowing an attacker to impersonate users when using the provisioning API. How to fix Access Restriction Bypass? Upgrade |
>=4.0.0 <8.1.2
<9.0.1
|