In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Authorization Bypass vulnerabilities in an interactive lesson.
Start learningUpgrade aiohttp_auth_autz
to version 0.2.0 or higher.
aiohttp_auth_autz is an Authorization and authentication middleware plugin for aiohttp.
Affected versions of this package are vulnerable to Authorization Bypass when an authenticated user has a user_id
that is the same as the name of an acl group, giving them the same permissions as the the group.