CVE-2022-42980

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

EUVD-2022-46029

Malicious code in bioql PyPI...

CVE-2022-42980

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

CVE-2022-42980

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

Path traversal

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

CVE-2022-42980

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

CVE-2022-42980

CVE-2022-42980 affects go-admin (GO Admin) 2.0.12 where the production JWT key is the literal string "go-admin". This hardcoded value can enable token forgery and unauthorized access corresponding to the high-impact CVSS rating. The available connected sources confirm the exact vulnerability—use ...

go-admin 信任管理问题漏洞

go-admin is go-admin-team open source based on Gin + Vue + Element UI front-end and back-end separation of permissions management system . A security vulnerability exists in go-admin also known as GO Admin version 2.0.12, which originated from its use of the string "go-admin" as the production...

CVE-2022-42980

go-admin aka GO Admin 2.0.12 uses the string go-admin as a production JWT key...

PT-2022-26691 · Goadmin · Go-Admin

Name of the Vulnerable Software and Affected Versions: go-admin aka GO Admin version 2.0.12 Description: The issue concerns the use of a hardcoded string 'go-admin' as a production JWT key in go-admin. Recommendations: For go-admin version 2.0.12, update the JWT key to a secure, randomly generate...