CVE-2025-7453 saltbo zpan JSON Web Token token.go NewToken hard-coded password

A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded...

CVE-2024-8135

Summary: CVE-2024-8135 affects Go-Tribe gotribe (up to commit cd3ccd32...) with a vulnerability in the Sign function of pkg/token/token.go. The issue arises from manipulation of the config.key argument, which leads to hard-coded credentials. Reported in multiple feeds, the product uses continuous...

CVE-2024-8135 Go-Tribe gotribe token.go Sign hard-coded credentials

A vulnerability classified as critical has been found in Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310. Affected is the function Sign of the file pkg/token/token.go. The manipulation of the argument config.key leads to hard-coded credentials. Continious delivery with rolling...

PT-2024-38824 · Go Tribe · Go-Tribe

Name of the Vulnerable Software and Affected Versions: Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310 Description: A critical vulnerability has been found in Go-Tribe gotribe. The issue affects the function Sign of the file pkg/token/token.go. The manipulation of the argument...