Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:36 p.m.8 views

CVE-2021-29451

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS6.7AI score0.00949EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/04/19 2:56 p.m.4 views

com.manydesigns:demo-tt (>=5.0.0 <=5.2.0), com.manydesigns:portofino-atmosphere (>=5.0.0 <=5.0.3) +16 more potentially affected by CVE-2021-29451 via com.manydesigns:portofino-core (>=5.0.0 <=5.2.0)

com.manydesigns:portofino-core MAVEN version =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.2.0 and more Source cves: CVE-2021-29451 Source advisory: OSV:GHSA-6G3C-2MH5-7Q6X...

9.1CVSS7.2AI score0.00949EPSS
Exploits0
NVD
NVD
added 2021/04/16 10:15 p.m.18 views

CVE-2021-29451

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS0.00949EPSS
Exploits0References3
CVE
CVE
added 2021/04/16 9:40 p.m.118 views

CVE-2021-29451

Portofino is an open-source web framework. Versions before 5.2.1 fail to properly verify the signature of JSON Web Tokens, allowing forging a valid JWT. Affected component: JWT validation logic in Portofino prior to 5.2.1. Impact: compromised authentication/session integrity for tokens forged wit...

9.1CVSS9.2AI score0.00949EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/04/16 9:40 p.m.22 views

CVE-2021-29451 Missing validation of JWT signature in `ManyDesigns/Portofino`

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS9.4AI score0.00949EPSS
Exploits0References3
Rows per page
Query Builder