2 matches found
CVE-2025-7079
A vulnerability, which was classified as problematic, has been found in mao888 bluebell-plus up to 2.3.0. This issue affects some unknown processing of the file bluebellbackend/pkg/jwt/jwt.go of the component JWT Token Handler. The manipulation of the argument mySecret with the input bluebell-plu...
bluebell-plus 安全漏洞
bluebell-plus is a blog forum web project by ChaoHu personal developer. A security vulnerability exists in bluebell-plus version 2.3.0 and earlier, which stems from the use of a hard-coded password for the parameter mySecret in the bluebellbackend/pkg/jwt/jwt.go file...