10 matches found
EUVD-2025-21176
Malicious code in bioql PyPI...
CVE-2025-7453
A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...
Use of Hard-coded Password
Overview Affected versions of this package are vulnerable to Use of Hard-coded Password via the NewToken function. An attacker can gain unauthorized access to sensitive information by exploiting the use of a hard-coded password in the JSON Web Token handling process. Remediation There is no fixed...
CVE-2025-7453
A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...
CVE-2025-7453
A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...
CVE-2025-7453 saltbo zpan JSON Web Token token.go NewToken hard-coded password
A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...
CVE-2025-7453
Saltbo zpan CVE-2025-7453 affects the JSON Web Token Handler’s NewToken function in zpan/internal/app/service/token.go. The root cause is use of a hard-coded password when processing input 123, enabling remote exploitation. Affected versions are up to 1.6.5 and 1.7.0-beta2. Exploitation is descri...
CVE-2025-7453 saltbo zpan JSON Web Token token.go NewToken hard-coded password
A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...
PT-2025-29275 · Unknown · Saltbo Zpan
Name of the Vulnerable Software and Affected Versions: saltbo zpan versions up to 1.6.5 saltbo zpan version 1.7.0-beta2 Description: A vulnerability exists in saltbo zpan related to the JSON Web Token Handler component. The issue affects the NewToken function within the...
ZPan 安全漏洞
ZPan is a cloud storage based web disk system by the individual developer Jasper Van. A security vulnerability exists in ZPan 1.6.5 and 1.7.0-beta2 and earlier versions, which stems from the use of hard-coded passwords...