admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2016/CVE-2016-5431.md

24 lines
985 B
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2016-5431](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5431)
![](https://img.shields.io/static/v1?label=Product&message=jose-php&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-327&color=brighgreen)
### Description
The PHP JOSE Library by Gree Inc. before version 2.2.1 is vulnerable to key confusion/algorithm substitution in the JWS component resulting in bypassing the signature verification via crafted tokens.
### POC
#### Reference
- https://github.com/nov/jose-php/commit/1cce55e27adf0274193eb1cd74b927a398a3df4b
#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Nucleware/powershell-jwt
- https://github.com/d3ck9/HTB-Under-Construction
- https://github.com/d7cky/HTB-Under-Construction
- https://github.com/mxcezl/JWT-SecLabs
- https://github.com/phramz/tc2022-jwt101
- https://github.com/vivekghinaiya/JWT_hacking
Reference in New Issue Copy Permalink