Skip to main content

Angular Jwt

1 CVEs product

Monthly

CVE-2018-11537 npm MEDIUM PATCH This Month

Auth0 angular-jwt before 0.1.10 treats whiteListedDomains entries as regular expressions, which allows remote attackers with knowledge of the jwtInterceptorProvider.whiteListedDomains setting to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Angular Jwt
NVD
CVSS 3.0
6.5
EPSS
1.1%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Auth0 angular-jwt before 0.1.10 treats whiteListedDomains entries as regular expressions, which allows remote attackers with knowledge of the jwtInterceptorProvider.whiteListedDomains setting to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Angular Jwt
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy