 Microsoft released its monthly secu ...
Continue Reading
June 13, 2023
This bug was reported directly to GitHub Security Lab.Read More ...
Continue Reading
June 13, 2023
io.ktor is vulnerable to Information Disclosure. The vulnerability exists due to improper masking of credentials inside exception messages, which allows an attack to exfiltrate the JWT token by sendin ...
Continue Reading
June 13, 2023
SAP Plant Connectivity - version 15.5 (PCo) or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token (JWT) in the HTTP request sent ...
Continue Reading
June 13, 2023
# CVE-2022-39227 CVE-2022-39227 : Proof of Concept Proof of co...Read More ...
Continue Reading
June 07, 2023
### Impact An attacker could crash the server by sending malformed JWT JSON in `LoginPacket` due to a security vulnerability in [`netresearch/jsonmapper`](https://github.com/cweiske/JsonMapper), due t ...
Continue Reading
June 06, 2023
### Impact An attacker could crash the server by sending malformed JWT JSON in `LoginPacket` due to a security vulnerability in [`netresearch/jsonmapper`](https://github.com/cweiske/JsonMapper), due t ...
Continue Reading
June 06, 2023
The Moxa MXsecurity Series running on the remote host uses a hard-coded JWT key. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to bypass authentication to perf ...
Continue Reading
June 05, 2023
Back to Main
