(1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering.
CVSS Score
5.0
EPSS Score
0.01
Published
2014-07-03