devise_invitable Security Advisories - Rubygems | Ecosyste.ms: Advisories

devise_invitable

It adds support for send invitations by email (it requires to be authenticated) and accept the invitation by setting a password.

View on github.com · View on rubygems.org

Security Advisories for devise_invitable in rubygems

Moderate

over 1 year ago

Possibility to circumvent the invitation token expiry period GSA_kwCzR0hTQS13M3E4LW00OTItNHB3cM4AA5Zd

rubygems decidim-system, decidim-admin, decidim, devise_invitable

Filter by Severity