2 matches found
PT-2022-16062
Name of the Vulnerable Software and Affected Versions jsonwebtoken versions = 8.5.1 Description The jsonwebtoken library can be misconfigured, leading to incorrect verification of tokens. This occurs when a poorly implemented key retrieval function is used, referring to the secretOrPublicKey...
STsoft ALZip Stack Buffer Overflow Vulnerability
ESTsoft ALZip is a compression tool from ESTsoft Korea. A stack buffer overflow vulnerability exists in ESTsoft ALZip 8.51 and earlier versions. A remote attacker can exploit this vulnerability to execute arbitrary code with the help of a specially crafted MS-DOS device file...