0Xadap

**Name of the Vulnerable Software and Affected Versions** RATCF versions prior to the version including commit cebb67b **Description** RATCF is an open-source framework for hosting Cyber-Security Capture the Flag events. In affected versions of RATCF, users with multi-factor authentication enabled are able to log in without a valid token. **Recommendations** For versions prior to the version including commit cebb67b, update to a version that includes the fix commit cebb67b to resolve the issue. As a temporary workaround, consider disabling multi-factor authentication until the patch is applied. Restrict access to the login functionality to minimize the risk of exploitation.