RSS   Vulnerabilities for 'Passport-sharepoint'   RSS

2019-07-25
 
CVE-2019-13483

CWE-345
 

 
Auth0 Passport-SharePoint before 0.4.0 does not validate the JWT signature of an Access Token before processing. This allows attackers to forge tokens and bypass authentication and authorization mechanisms.

 

 >>> Vendor: Auth0 12 Products
Auth0.js
Aspnet
Aspnet-owin
Passport-sharepoint
Jsonwebtoken
LOCK
Login by auth0
Wp-auth0
Express-jwt
Auth0
Nextjs-auth0
Express openid connect


Copyright 2024, cxsecurity.com

 

Back to Top