CVE-2025-4754

Published June 17th, 2025

View on NVD ↗

CVSS v3

N/A

CVSS v2

N/A

Affected

PROJECT

Description

Insufficient Session Expiration vulnerability in ash-project ash_authentication_phoenix allows Session Hijacking. This vulnerability is associated with program files lib/ash_authentication_phoenix/controller.ex. This issue affects ash_authentication_phoenix until 2.10.0.

team-alembic/ash_authentication_phoenix

Drop-in authentication support for Phoenix apps using AshAuthentication.

GitHub