V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
web-auth
Vulnerabilities in
web-auth
2 results
CVE-2024-39912
MEDIUM
Enumeration of valid usernames in web-auth/webauthn-lib
EPSS
0.4%
CVE-2026-30964
MEDIUM
Webauthn Framework: allowed_origins collapses URL-like origins to host-only values, bypassing exact origin validation
EPSS
0.2%