sorcery vulnerabilities

Provides common authentication needs such as signing in/out, activating by email and resetting password.

Latest version: 0.15.0

Licenses detected

  • license: MIT >= 0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the sorcery package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • H
Authentication Bypass
<0.15.0 Not available 08 May, 2020
  • L
Authorization Bypass
>=0.8.3, <0.9.1 Not available 07 Dec, 2017