cdbattags/lua-resty-jwt

Releases18

Frequency7 months 2 weeks

Last Release 4 months ago

Stars157

JWT For The Great Openresty

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-33531 ↗	Apr 24, 2024Wednesday, 24 April 2024, 06:15	8.1 HIGH	—
cdbattags lua-resty-jwt 0.2.3 allows attackers to bypass all JWT-parsing signature checks by crafting a JWT with an enc header with the value A256GCM.