| Título | gooaclok819 sublinkX 1.8 Improper Access Controls |
|---|
| Descripción | The JWT secret key is hardcoded in the source code, making it easy for an attacker to forge valid JWT tokens and bypass authentication mechanisms.
Details can be found in https://github.com/gooaclok819/sublinkX/issues/68. |
|---|
| Fuente | ⚠️ https://github.com/gooaclok819/sublinkX/issues/68 |
|---|
| Usuario | Tritium (UID 50779) |
|---|
| Sumisión | 2025-06-22 16:22 (hace 10 meses) |
|---|
| Moderación | 2025-06-27 12:52 (5 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 313882 [gooaclok819 sublinkX hasta 1.8 middlewares/jwt.go cifrado débil] |
|---|
| Puntos | 18 |
|---|