4 matches found
CVE-2024-1258
A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file api/config/params.php of the component API. The manipulation of the argument JWTKEYADMIN leads to use of hard-coded cryptographic k...
Hardcoded credentials
A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file api/config/params.php of the component API. The manipulation of the argument JWTKEYADMIN leads to use of hard-coded cryptographic k...
CVE-2024-1258 Juanpao JPShop API params.php hard-coded key
A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file api/config/params.php of the component API. The manipulation of the argument JWTKEYADMIN leads to use of hard-coded cryptographic k...
CVE-2024-1258
Juanpao JPShop API (component API) has a vulnerability in api/config/params.php where manipulating the JWT_KEY_ADMIN leads to use of a hard-coded cryptographic key. Affected versions: up to 1.5.02. The issue is tied to hard-coded keys, with reported high confidentiality impact and high attack com...