Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/07/08 1:22 p.m.10 views

CVE-2025-7080

A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwtutils.go of the component JWT Token Handler. The manipulation of the argument accessSecret/refreshSecret wit...

6.3CVSS7.2AI score0.00353EPSS
Exploits0References1
Circl
Circl
added 2025/07/06 5:14 p.m.7 views

CVE-2025-7080

creationtimestamp| type| source ---|---|--- 2025-07-06 17:14:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltcrhf3ax22i...

6.3CVSS4.3AI score0.00353EPSS
Exploits0References1
NVD
NVD
added 2025/07/06 2:15 p.m.12 views

CVE-2025-7080

A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwtutils.go of the component JWT Token Handler. The manipulation of the argument accessSecret/refreshSecret wit...

6.3CVSS0.00353EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/06 1:2 p.m.16 views

CVE-2025-7080 Done-0 Jank JWT Token jwt_utils.go hard-coded password

A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwtutils.go of the component JWT Token Handler. The manipulation of the argument accessSecret/refreshSecret wit...

6.3CVSS0.00353EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/06 1:2 p.m.7 views

CVE-2025-7080 Done-0 Jank JWT Token jwt_utils.go hard-coded password

A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwtutils.go of the component JWT Token Handler. The manipulation of the argument accessSecret/refreshSecret wit...

6.3CVSS7.1AI score0.00353EPSS
Exploits0References4
CVE
CVE
added 2025/07/06 1:2 p.m.52 views

CVE-2025-7080

The CVE affects the Done-0 Jank JWT Token Handler (internal/utils/jwt_utils.go). The issue arises from manipulating the arguments accessSecret and refreshSecret (values jank-blog-secret and jank-blog-refresh-secret), which leads to use of a hard-coded password. Exploitation is possible remotely, ...

6.3CVSS4.3AI score0.00353EPSS
Exploits0References4
Rows per page
Query Builder