Insufficient Session Expiration in GitHub repository nocodb/nocodb prior to 0.91.9.
References
- https://nvd.nist.gov/vuln/detail/CVE-2022-2064
- https://github.com/nocodb/nocodb/commit/c9b5111b25aea2781e19395a8e9107ddbd235a2b
- https://huntr.dev/bounties/39523d51-fc5c-48b8-a082-171da79761bb
- https://github.com/nocodb/nocodb/pull/2262
- https://github.com/nocodb/nocodb/pull/2338
- https://github.com/nocodb/nocodb/releases/tag/0.91.9
- https://github.com/advisories/GHSA-6293-2vg2-pmp5