Lucene search
K

14 matches found

GithubExploit
GithubExploit
โ€ขadded 2026/06/01 10:42 a.m.โ€ข91 views

Exploit for CVE-2026-29000

Lab Demo CVE-2026-29000: pac4j-jwt Authentication Bypass Mรดi...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/05/30 7:34 a.m.โ€ข107 views

Exploit for CVE-2026-29000

CVE-2026-29000: pac4j JWT Authentication Bypass PoC Proof...

9.3CVSS6.9AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/05/12 4:3 p.m.โ€ข85 views

Exploit for CVE-2026-29000

๐Ÿš€ CVE-2026-29000 - pac4j-jwt Authentication Bypass Exploit !...

9.3CVSS6AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/24 9:24 a.m.โ€ข153 views

Exploit for CVE-2026-29000

CVE-2026-29000-pac4j-jwt-auth-byp...

9.3CVSS6.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/16 4:32 a.m.โ€ข160 views

Exploit for CVE-2026-29000

cve-2...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/14 3:37 p.m.โ€ข155 views

Exploit for CVE-2026-29000

CVE-2026-29000 โ€” pac4j-jwt PlainJWT-in-JWE Authentication Bypa...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/13 2:38 a.m.โ€ข168 views

Exploit for CVE-2026-29000

CVE-2026-29000 - pac4j-jwt Authentication Bypass PoC Not...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
RedhatCVE
RedhatCVE
โ€ขadded 2026/03/06 1:34 a.m.โ€ข10 views

CVE-2026-29000

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing encrypted JWTs that allows remote attackers to forge authentication tokens. Attackers who possess the server's RSA public key can create a JWE-wrapped PlainJWT wi...

9.3CVSS6AI score0.05856EPSS
Exploits17References1
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 2:7 a.m.โ€ข9 views

ba.sake:pac4j-testkit (>=0.1.0 <=0.2.0), com.baomidou:shaun-core (=2.0.0) +5 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=6.0.3 <=6.2.2)

org.pac4j:pac4j-jwt MAVEN version =6.0.3, =0.1.0, =7.1.0, =7.1.0, =7.3.4 Source cves: CVE-2026-29000 Source advisory: SNYK:JAVA-ORGPAC4J-15428218...

9.3CVSS7.1AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข11 views

ba.sake:pac4j-testkit (>=0.1.0 <=0.2.0), com.github.hiwepy:pac4j-spring-boot-starter (=3.3.x.20241020.RELEASE) +2 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=6.0.5 <=6.2.2)

org.pac4j:pac4j-jwt MAVEN version =6.0.5, =0.1.0, =7.1.0, =7.1.0, =7.3.4 Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS7.1AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข13 views

com.efluid.oss:efluid-datagate-app (>=3.1.3 <=6.1.5), com.efluid.oss:efluid-datagate-app-cucumber (>=3.1.3 <=6.1.5) +5 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=5.0.1 <=5.7.8)

org.pac4j:pac4j-jwt MAVEN version =5.0.1, =3.1.3, =3.1.3, =0.8.0, =0.8.0, =2.0.6, =2.2.1, =2.0.6, =2.1.0 Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS6.7AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข9 views

cc.akkaha:asura-play_2.12 (>=0.5.0 <=0.6.0), cc.akkaha:pea_2.12 (>=0.1.0 <=0.7.0) +305 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=1.8.2 <=4.5.8)

org.pac4j:pac4j-jwt MAVEN version =1.8.2, =0.5.0, =0.1.0, =1.0, =1.0, =1.1, =1.1.0, =1.1.1, =1.1.1, =1.1.1, =1.0.0-beta-21, =1.0.0-beta-21, =1.0.0.RELEASE, =0.2.0, =0.2.0, =0.2.0, =0.9.0 and more Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS6.7AI score0.05856EPSS
Exploits17
Circl
Circl
โ€ขadded 2026/03/04 10:17 p.m.โ€ข9 views

CVE-2026-29000

creationtimestamp| type| source ---|---|--- 2026-03-04 22:17:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgbcrw7c2u2s 2026-03-05 00:43:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgbkx4u4ue2v 2026-03-05 03:00:29+00:00| seen|...

9.3CVSS6.8AI score0.05856EPSS
Exploits17References28
Vulnrichment
Vulnrichment
โ€ขadded 2026/03/04 9:49 p.m.โ€ข4 views

CVE-2026-29000 pac4j-jwt JwtAuthenticator Authentication Bypass

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing encrypted JWTs that allows remote attackers to forge authentication tokens. Attackers who possess the server's RSA public key can create a JWE-wrapped PlainJWT wi...

9.3CVSS6AI score0.05856EPSS
Exploits17References3
Rows per page
Query Builder