Lucene search
+L

3169 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/13 7:12 p.m.9 views

CVE-2026-44351

fast-jwt provides fast JSON Web Token JWT implementation. Prior to 6.2.4, a critical authentication-bypass vulnerability in fast-jwt's async key-resolver flow allows any unauthenticated attacker to forge arbitrary JWTs that are accepted as authentic. When the application's key resolver returns an...

9.1CVSS6AI score0.00236EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/13 7:12 p.m.7 views

CVE-2026-44351 fast-jwt: Empty HMAC secret accepted via async key resolver - JWT auth bypass

fast-jwt provides fast JSON Web Token JWT implementation. Prior to 6.2.4, a critical authentication-bypass vulnerability in fast-jwt's async key-resolver flow allows any unauthenticated attacker to forge arbitrary JWTs that are accepted as authentic. When the application's key resolver returns an...

9.1CVSS6AI score0.00236EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 7:12 p.m.42 views

CVE-2026-44351

CVE-2026-44351 — fast-jwt auth bypass (pre-6.2.4) : The vulnerability exists in fast-jwt’s async key-resolver flow when the resolver returns an empty string or zero-length Buffer. The library may treat this as a valid secret and derive allowedAlgorithms as HS256/HS384/HS512, then verify a JWT aga...

9.1CVSS6AI score0.00236EPSS
Exploits0References1
OSV
OSV
added 2026/05/13 7:12 p.m.2 views

CVE-2026-44351 fast-jwt: Empty HMAC secret accepted via async key resolver - JWT auth bypass

fast-jwt provides fast JSON Web Token JWT implementation. Prior to 6.2.4, a critical authentication-bypass vulnerability in fast-jwt's async key-resolver flow allows any unauthenticated attacker to forge arbitrary JWTs that are accepted as authentic. When the application's key resolver returns an...

9.1CVSS6.1AI score0.00236EPSS
Exploits0References3
NVD
NVD
added 2026/05/13 4:16 p.m.20 views

CVE-2026-44459

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.18, improper validation of the JWT NumericDate claims exp, nbf, and iat in hono/utils/jwt allows tokens with non-spec-compliant claim values to silently bypass time-based checks. This issue is not...

3.8CVSS0.00216EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/13 3:9 a.m.19 views

Malicious code in knot-devise-jwt-helper (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 276381bb1ca0d7664992da8130d70f44c77debd2752b76bf42f2836d96217228 Source: google-open-source-security a4e4f74e90479d472a307d311d48214827e21cf93ecf9b0b62ff2cb72adb2c9e This package is a malicious packages part of the Go...

5.3AI score
Exploits0References3
OSV
OSV
added 2026/05/13 3:9 a.m.12 views

MAL-2026-3632 Malicious code in knot-devise-jwt-helper (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 276381bb1ca0d7664992da8130d70f44c77debd2752b76bf42f2836d96217228 Source: google-open-source-security a4e4f74e90479d472a307d311d48214827e21cf93ecf9b0b62ff2cb72adb2c9e This package is a malicious packages part of the Go...

5.3AI score
Exploits0References3
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.11 views

fast-jwt 授权问题漏洞

fast-jwt is a JSON Web Token implementation open-sourced by Nearform. Versions of fast-jwt prior to 6.2.4 contained an authorization vulnerability. This vulnerability stemmed from a critical authentication bypass in the asynchronous key resolution process, allowing unauthenticated attackers to...

9.1CVSS5.8AI score0.00236EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/05/12 4:3 p.m.100 views

Exploit for CVE-2026-29000

🚀 CVE-2026-29000 - pac4j-jwt Authentication Bypass Exploit !...

9.3CVSS6AI score0.05856EPSS
Exploits17
Nextcloud
Nextcloud
added 2026/05/12 9:12 a.m.19 views

Authentication Bypass in ID4me handling via Missing JWT Signature Verification in User OIDC

None...

8.1CVSS5.8AI score0.00329EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:7 p.m.12 views

Dozzle's Cross-Site WebSocket Hijacking (CSWSH) on exec/attach endpointsbypasses authentication

Summary The WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: funcr http.Request bool return true , accepting upgrade requests from any origin. Combined with the JWT cookie using SameSite: Lax, this enables Cross-Site WebSocket Hijacking CSWSH — even when authentication is...

9.6CVSS5.9AI score0.00195EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/05/11 2:7 p.m.47 views

GHSA-J643-X8PV-8M67 Dozzle's Cross-Site WebSocket Hijacking (CSWSH) on exec/attach endpointsbypasses authentication

Summary The WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: funcr http.Request bool return true , accepting upgrade requests from any origin. Combined with the JWT cookie using SameSite: Lax, this enables Cross-Site WebSocket Hijacking CSWSH — even when authentication is...

9.6CVSS5.9AI score0.00195EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39679

Name of the Vulnerable Software and Affected Versions Dozzle versions prior to 10.5.2 Description The WebSocket upgrader for the '/exec' and '/attach' endpoints accepts upgrade requests from any origin because it uses a custom CheckOrigin function that always returns true. When combined with the...

9.6CVSS5.8AI score0.00195EPSS
Exploits1References9
Patchstack
Patchstack
added 2026/05/09 12:45 a.m.9 views

NPM: Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()

NPM: Hono has improper validation of NumericDate claims exp, nbf, iat in JWT verify vulnerability discovered by ? in WordPress Npm hono versions 4.12.18...

3.8CVSS5.8AI score0.00216EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/05/08 7:16 a.m.9 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

7.3CVSS0.00281EPSS
Exploits2References2
CVE
CVE
added 2026/05/08 12:0 a.m.67 views

CVE-2025-55449

AstrBot 3.5.15 is vulnerable to remote code execution via a hardcoded JWT signing key: Advanced_System_for_Text_Response_and_Bot_Operations_Tool. An attacker can forge a valid admin JWT and upload a malicious plugin through /api/plugin/install-upload, leading to arbitrary command execution (e.g.,...

7.3CVSS5.8AI score0.00281EPSS
Exploits2References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/08 12:0 a.m.6 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

5.8AI score0.00281EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/05/08 12:0 a.m.52 views

CVE-2024-46508

yeti-platform yeti before 2.1.12 allows attackers to generate valid JWT tokens is the secret is not changed by setting YETIAUTHSECRETKEY to a value other than SECRET...

0.00429EPSS
Exploits3References1
NVD
NVD
added 2026/05/07 8:16 p.m.21 views

CVE-2026-42239

Budibase is an open-source low-code platform. Prior to version 3.35.10, the budibase:auth cookie containing the JWT session token is set with httpOnly: false at packages/backend-core/src/utils/utils.ts:218. JavaScript can read this cookie via document.cookie. This means every XSS becomes a full...

8.1CVSS0.00283EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/05/07 6:49 p.m.10 views

CVE-2026-42239 Budibase auth session cookies are set with httpOnly:false — any XSS can lead to full account takeover

Budibase is an open-source low-code platform. Prior to version 3.35.10, the budibase:auth cookie containing the JWT session token is set with httpOnly: false at packages/backend-core/src/utils/utils.ts:218. JavaScript can read this cookie via document.cookie. This means every XSS becomes a full...

8.1CVSS5.8AI score0.00283EPSS
Exploits1References2
Rows per page
Query Builder