Gitlab password reset bug leaves more than 5.3K servers up for grabs

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • gitlab

    • > "RecoverableByAnyEmail"

    Added 8 months ago [1]. And then one month later:

    > "password_reset_any_verified_email"

    Was removed. 7 months ago [2], *note* __verified__ word here.

    No blaming or conspiracy intended in this post, just listing links to relevant commits.

    1 - https://gitlab.com/gitlab-org/gitlab/-/commit/94069d38c9cd63...

    2 - https://gitlab.com/gitlab-org/gitlab/-/commit/a935d28f3decf8...

  • CVE-2023-7028

    This repository presents a proof-of-concept of CVE-2023-7028

    • > user[email][][email protected]&user[email][][email protected]

    (per this POC github: https://github.com/Vozec/CVE-2023-7028)

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project