| Titre | gooaclok819 sublinkX 1.8 Improper Access Controls |
|---|
| Description | The JWT secret key is hardcoded in the source code, making it easy for an attacker to forge valid JWT tokens and bypass authentication mechanisms.
Details can be found in https://github.com/gooaclok819/sublinkX/issues/68. |
|---|
| La source | ⚠️ https://github.com/gooaclok819/sublinkX/issues/68 |
|---|
| Utilisateur | Tritium (UID 50779) |
|---|
| Soumission | 22/06/2025 16:22 (il y a 10 mois) |
|---|
| Modérer | 27/06/2025 12:52 (5 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 313882 [gooaclok819 sublinkX jusqu’à 1.8 middlewares/jwt.go chiffrement faible] |
|---|
| Points | 18 |
|---|