1 results (0.005 seconds)
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0
CVE-2015-2951
https://notcve.org/view.php?id=CVE-2015-2951
JWT.php in F21 JWT before 2.0 allows remote attackers to bypass signature verification via crafted tokens. JWT.php en F21 JWT anterior a 2.0 permite a atacantes remotos evadir la verificación de firmas a través de tokens manipulados. • http://jvn.jp/en/jp/JVN06120222/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000073 http://www.securityfocus.com/bid/75021 https://github.com/F21/jwt/commit/a327cf9052df8f9f97728ca0b5fa78a8231b79b6 • CWE-20: Improper Input Validation •