Vulnerability CVE-2022-36672
Published: 2022-09-01

Description:
Novel-Plus v3.6.2 was discovered to contain a hard-coded JWT key located in the project config file. This vulnerability allows attackers to create a custom user session.

 References:
https://www.mesec.cn/archives/296
Copyright 2026, cxsecurity.com

 

Back to Top