Lucene search
K

14 matches found

GithubExploit
GithubExploit
โ€ขadded 2026/06/01 10:42 a.m.โ€ข86 views

Exploit for CVE-2026-29000

Lab Demo CVE-2026-29000: pac4j-jwt Authentication Bypass Mรดi...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/05/30 7:34 a.m.โ€ข97 views

Exploit for CVE-2026-29000

CVE-2026-29000: pac4j JWT Authentication Bypass PoC Proof...

9.3CVSS6.9AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/05/12 4:3 p.m.โ€ข80 views

Exploit for CVE-2026-29000

๐Ÿš€ CVE-2026-29000 - pac4j-jwt Authentication Bypass Exploit !...

9.3CVSS6AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/24 9:24 a.m.โ€ข150 views

Exploit for CVE-2026-29000

CVE-2026-29000-pac4j-jwt-auth-byp...

9.3CVSS6.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/16 4:32 a.m.โ€ข157 views

Exploit for CVE-2026-29000

cve-2...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/14 3:37 p.m.โ€ข152 views

Exploit for CVE-2026-29000

CVE-2026-29000 โ€” pac4j-jwt PlainJWT-in-JWE Authentication Bypa...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
GithubExploit
GithubExploit
โ€ขadded 2026/03/13 2:38 a.m.โ€ข164 views

Exploit for CVE-2026-29000

CVE-2026-29000 - pac4j-jwt Authentication Bypass PoC Not...

9.3CVSS5.8AI score0.05856EPSS
Exploits17
RedhatCVE
RedhatCVE
โ€ขadded 2026/03/06 1:34 a.m.โ€ข8 views

CVE-2026-29000

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing encrypted JWTs that allows remote attackers to forge authentication tokens. Attackers who possess the server's RSA public key can create a JWE-wrapped PlainJWT wi...

9.3CVSS6AI score0.05856EPSS
Exploits17References1
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 2:7 a.m.โ€ข9 views

ba.sake:pac4j-testkit (>=0.1.0 <=0.2.0), com.baomidou:shaun-core (=2.0.0) +5 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=6.0.3 <=6.2.2)

org.pac4j:pac4j-jwt MAVEN version =6.0.3, =0.1.0, =7.1.0, =7.1.0, =7.3.4 Source cves: CVE-2026-29000 Source advisory: SNYK:JAVA-ORGPAC4J-15428218...

9.3CVSS7.1AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข13 views

com.efluid.oss:efluid-datagate-app (>=3.1.3 <=6.1.5), com.efluid.oss:efluid-datagate-app-cucumber (>=3.1.3 <=6.1.5) +5 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=5.0.1 <=5.7.8)

org.pac4j:pac4j-jwt MAVEN version =5.0.1, =3.1.3, =3.1.3, =0.8.0, =0.8.0, =2.0.6, =2.2.1, =2.0.6, =2.1.0 Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS6.7AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข9 views

cc.akkaha:asura-play_2.12 (>=0.5.0 <=0.6.0), cc.akkaha:pea_2.12 (>=0.1.0 <=0.7.0) +305 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=1.8.2 <=4.5.8)

org.pac4j:pac4j-jwt MAVEN version =1.8.2, =0.5.0, =0.1.0, =1.0, =1.0, =1.1, =1.1.0, =1.1.1, =1.1.1, =1.1.1, =1.0.0-beta-21, =1.0.0-beta-21, =1.0.0.RELEASE, =0.2.0, =0.2.0, =0.2.0, =0.9.0 and more Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS6.7AI score0.05856EPSS
Exploits17
vulnersOsv
vulnersOsv
โ€ขadded 2026/03/05 12:31 a.m.โ€ข10 views

ba.sake:pac4j-testkit (>=0.1.0 <=0.2.0), com.github.hiwepy:pac4j-spring-boot-starter (=3.3.x.20241020.RELEASE) +2 more potentially affected by CVE-2026-29000 via org.pac4j:pac4j-jwt (>=6.0.5 <=6.2.2)

org.pac4j:pac4j-jwt MAVEN version =6.0.5, =0.1.0, =7.1.0, =7.1.0, =7.3.4 Source cves: CVE-2026-29000 Source advisory: OSV:GHSA-PM7G-W2CF-Q238...

9.3CVSS7.1AI score0.05856EPSS
Exploits17
Circl
Circl
โ€ขadded 2026/03/04 10:17 p.m.โ€ข7 views

CVE-2026-29000

creationtimestamp| type| source ---|---|--- 2026-03-04 22:17:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgbcrw7c2u2s 2026-03-05 00:43:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgbkx4u4ue2v 2026-03-05 03:00:29+00:00| seen|...

9.3CVSS6.8AI score0.05856EPSS
Exploits17References28
Vulnrichment
Vulnrichment
โ€ขadded 2026/03/04 9:49 p.m.โ€ข4 views

CVE-2026-29000 pac4j-jwt JwtAuthenticator Authentication Bypass

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing encrypted JWTs that allows remote attackers to forge authentication tokens. Attackers who possess the server's RSA public key can create a JWE-wrapped PlainJWT wi...

9.3CVSS6AI score0.05856EPSS
Exploits17References3
Rows per page
Query Builder