GHSA-76rh-xv36-9mrc, CVE-2006-0868
packagist/pear/auth
PEAR::Auth potential authentication bypass vulnerability
Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to "falsify authentication credentials," related to the "underlying storage containers."
All versions before 1.2.4, all versions starting from 1.3.0r1 before 1.3.0r4
Upgrade to versions 1.2.4, 1.3.0r4 or above.
2024-02-12
source |