Dhrumil Mistry

1 exploit Active since Mar 2024
CVE-2024-22513 EXPLOITDB MEDIUM python WRITEUP
djangorestframework-simplejwt <5.3.1 - Info Disclosure
djangorestframework-simplejwt version 5.3.1 and before is vulnerable to information disclosure. A user can access web application resources even after their account has been disabled due to missing user validation checks via the for_user method.
CVSS 5.5