2 matches found
JWSVerifier uses algorithm from unprotected header, enabling algorithm confusion attacks
Summary JWSVerifier::getAlgorithm in src/Library/Signature/JWSVerifier.php line 144 merges protected and unprotected headers using PHP's spread operator: php $completeHeader = ...$signature-getProtectedHeader, ...$signature-getHeader; In PHP, when spreading arrays with duplicate string keys, the...
Dromara Sa-Token Security Breach
Sa-Token is a lightweight Java permissions authentication framework open-sourced by dromara. Dromara Sa-Token 1.36.0 and earlier versions have a security vulnerability , the vulnerability stems from allowing remote attackers to escalate privileges through a carefully designed load...