Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/22 7:36 p.m.8 views

CVE-2021-29451

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS6.7AI score0.00949EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2021/04/19 2:56 p.m.4 views

com.manydesigns:demo-tt (>=5.0.0 <=5.2.0), com.manydesigns:portofino-atmosphere (>=5.0.0 <=5.0.3) +16 more potentially affected by CVE-2021-29451 via com.manydesigns:portofino-core (>=5.0.0 <=5.2.0)

com.manydesigns:portofino-core MAVEN version =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.2.0 and more Source cves: CVE-2021-29451 Source advisory: OSV:GHSA-6G3C-2MH5-7Q6X...

9.1CVSS7.2AI score0.00949EPSS
Exploits0
nvd
nvd
added 2021/04/16 10:15 p.m.18 views

CVE-2021-29451

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS0.00949EPSS
Exploits0References3
cvelist
cvelist
added 2021/04/16 9:40 p.m.23 views

CVE-2021-29451 Missing validation of JWT signature in `ManyDesigns/Portofino`

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release...

9.1CVSS9.4AI score0.00949EPSS
Exploits0References3
cve
cve
added 2021/04/16 9:40 p.m.119 views

CVE-2021-29451

Portofino is an open-source web framework. Versions before 5.2.1 fail to properly verify the signature of JSON Web Tokens, allowing forging a valid JWT. Affected component: JWT validation logic in Portofino prior to 5.2.1. Impact: compromised authentication/session integrity for tokens forged wit...

9.1CVSS9.2AI score0.00949EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder