Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to "falsify authentication credentials," related to the "underlying storage containers."
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| pear/auth(Packagist) | 0 | 1.2.4 | N/A |
| pear/auth(Packagist) | 1.3.0r1 | 1.3.0r4 | N/A |
CVSS Metrics
