fengwenhua

1 exploit Active since Nov 2021
CVE-2021-37580 NOMISEC CRITICAL WORKING POC
Apache ShenYu 2.3.0-2.4.0 - Authentication Bypass via JWT Misuse
A flaw was found in Apache ShenYu Admin. The incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication. This issue affected Apache ShenYu 2.3.0 and 2.4.0
38 stars
CVSS 9.8