The json-jwt gem before 1.11.0 for Ruby lacks an element count during the splitting of a JWE...Read More ...
Continue Reading
May 22, 2025
graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying...Read More ...
Continue Reading
May 22, 2025
graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying...Read More ...
Continue Reading
May 22, 2025
Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac(). The component is: JWT.pm, ...
Continue Reading
May 22, 2025
The json-jwt gem before 1.11.0 for Ruby lacks an element count during the splitting of a JWE...Read More ...
Continue Reading
May 22, 2025
The json-jwt gem before 1.11.0 for Ruby lacks an element count during the splitting of a JWE...Read More ...
Continue Reading
May 22, 2025
Xmidt cjwt through 1.0.1 before 2019-11-25 maps unsupported algorithms to alg=none, which sometimes leads to untrusted accidental JWT...Read More ...
Continue Reading
May 22, 2025
Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac(). The component is: JWT.pm, ...
Continue Reading
May 22, 2025
Back to Main
