Prosody Mod Auth Ldap2
stack.watch can notify you when security vulnerabilities are reported in Prosody Mod Auth Ldap2. You can add multiple products that you use with Mod Auth Ldap2 to create your own personal software stack watcher.
By the Year
In 2020 there have been 1 vulnerability in Prosody Mod Auth Ldap2 with an average score of 9.8 out of ten. Last year Mod Auth Ldap2 had 0 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2020 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2020 | 1 | 9.80 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Mod Auth Ldap2 vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.
Latest Prosody Mod Auth Ldap2 Security Vulnerabilities
The mod_auth_ldap and mod_auth_ldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the is_admin() function. This grants remote entities admin-only functionality if their username matches the username of a local admin
CVE-2020-8086
9.8 - Critical
- January 28, 2020
The mod_auth_ldap and mod_auth_ldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the is_admin() function. This grants remote entities admin-only functionality if their username matches the username of a local admin.
AuthZ