RSS   Vulnerabilities for 'Portofino'   RSS

2021-04-16
 
CVE-2021-29451

CWE-347
 

 
Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release.

 


Copyright 2021, cxsecurity.com

 

Back to Top