CVE-2026-40263

Name of the Vulnerable Software and Affected Versions Note Mark versions prior to 0.19.2

Description A timing side-channel in the login endpoint allows unauthenticated attackers to determine whether a username exists by measuring response time differences. The server performs bcrypt password verification only when the supplied username exists, causing requests for valid usernames to take noticeably longer than requests for nonexistent usernames. This discrepancy enables remote username enumeration, which can be used to facilitate targeted credential attacks. The issue affects the 'POST /api/auth/token' endpoint and is caused by the server executing the bcrypt.CompareHashAndPassword function only after a user is found in the database, without performing a constant-time equalization for nonexistent users.

Recommendations Update to version 0.19.2.