CVE-2013-4346: Cryptographic Issues
(updated )
The Server.verify_request
function in SimpleGeo python-oauth2 does not check the nonce, which allows remote attackers to perform replay attacks via a signed URL.
References
Detect and mitigate CVE-2013-4346 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →