Signature counter is not validated when validating passkey signature

[Kirby]

When validating a passkey signature in \XF\Service\Passkey\Manager::validate() the signature counter is not checked.

Suggested Fix
Store the signature counter in entity Passkey after each successful validation and validate it when validating a passkey signature.

Continue reading...