Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
ORY
Support ORY in their mission to build the new ID stack
Collective -
https://opencollective.com/ory
- Website: https://www.ory.sh
- Code: https://github.com/ory
Moderate
Ecosystems: go
Packages: github.com/ory/kratos
Source: github
Published: 3 months ago
kratos: GSA_kwCzR0hTQS13YzQzLTczdzcteDJmNc4AA_zB
Ory Kratos's setting required_aal `highest_available` does not properly respect code + mfa credentialsEcosystems: go
Packages: github.com/ory/kratos
Source: github
Published: 3 months ago
Low
Ecosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 1 year ago
oathkeeper: GSA_kwCzR0hTQS13OW1yLTI4bXctajhoZ84AAy-4
Hop-by-hop abuse to malform header mutatorEcosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 1 year ago
High
Ecosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 3 years ago
oathkeeper: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmdmYtNmd4NS1tcXY2
Incorrect Authorization in ORY OathkeeperEcosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 3 years ago
High
Ecosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 3 years ago
oathkeeper: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2cDQtcnBtci14d3Jy
Possible bypass of token claim validation when OAuth2 Introspection caching is enabledEcosystems: go
Packages: github.com/ory/oathkeeper
Source: github
Published: over 3 years ago
Moderate
Ecosystems: go
Packages: github.com/ory/hydra
Source: github
Published: over 3 years ago
hydra: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwM2ctdnB3Ni00dzY2
Authentication Bypass in hydraEcosystems: go
Packages: github.com/ory/hydra
Source: github
Published: over 3 years ago
Moderate
Ecosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
fosite: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmcTMtdzU0Yy1mOXE1
OAuth2 Redirect URL validity does not respect query parameters and character casing for loopback addressesEcosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
Moderate
Ecosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
fosite: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdyZnAtcTJtbS1oZnA2
Redirect URL matching ignores character casingEcosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
High
Ecosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
fosite: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYzcTktMnAzbS03ZzQz
Token reuse in Ory fositeEcosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
High
Ecosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago
fosite: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdtcXItMnYzcS12Mndt
Ory fosite contains Improper Handling of Exceptional ConditionsEcosystems: go
Packages: github.com/ory/fosite
Source: github
Published: over 3 years ago