github.com/robbert229/jwt is vulnerable to Timing Attacks. A remote attacker is able to determine the expected hash-based message authentication code(HMAC) with a large enough number of requests over a low latency connection.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/robbert229/jwt | eq | HEAD | |
github.com/robbert229/jwt | eq | HEAD |