Vulners
Lucene search
Incorrect Access Control vulnerability in src/Firebase/Auth/IdTokenVerifier.php does not verify for token signature that can result in JWT with any email address and user ID could be forged from an actual token, or from thin air.
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Jerome Gamez Firebase Admin SDK for PHP Access Control Error Vulnerability | 26 Feb 201800:00 | – | cnvd |
 | CVE-2018-1000025 | 9 Feb 201823:00 | – | cve |
 | CVE-2018-1000025 | 9 Feb 201823:00 | – | cvelist |
 | EUVD-2022-2377 | 3 Oct 202520:07 | – | euvd |
 | Incorrect Access Control vulnerability in src/Firebase/Auth/IdTokenVerifier.php does not verify for token signature that can result in JWT with any email address and user ID could be forged from an actual token, or from thin air. | 16 Jan 201810:51 | – | friendsofphp |
 | Jerome Gamez Firebase Admin SDK for PHP Incorrect Access Control vulnerability | 13 May 202201:48 | – | github |
 | CVE-2018-1000025 | 9 Feb 201823:29 | – | nvd |
 | GHSA-4GJJ-R7W8-42CQ Jerome Gamez Firebase Admin SDK for PHP Incorrect Access Control vulnerability | 13 May 202201:48 | – | osv |
 | Improper access control | 9 Feb 201823:29 | – | prion |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
16 Jan 2018 10:51Current
7.7High risk
Vulners AI Score7.7
EPSS0.00345