Site icon API Security Blog

Improper JWT Signature Validation

Victor Test

image
jupyterhub-ltiauthenticator is vulnerable to improper JWT signature validation. The vulnerability is due to missing JWT signature validation in LTI13Authenticator, allowing forged authentication requests to be…Read More

Exit mobile version