CVE-2015-2951

The CVE-2015-2951 detail involves the F21 JWT PHP library (JWT.php) where versions before 2.0 fail to verify token signatures, enabling remote attackers to bypass signature verification via crafted tokens. Affected component is the PHP JWT token processor; root cause is signature verification byp...