CVE-2024-8297 | kitsada8621 Digital Library Management System 1.0 jwt_refresh_token_middleware.go JwtRefreshAuth Authorization neutralization for logs

Inserito da Angelo Barbosa | Ago 29, 2024 | CVE

A vulnerability was found in kitsada8621 Digital Library Management System 1.0. It has been classified as problematic. Affected is the function JwtRefreshAuth of the file middleware/jwt_refresh_token_middleware.go. The manipulation of the argument Authorization leads to improper output neutralization for logs.

This vulnerability is traded as CVE-2024-8297. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-8297 | kitsada8621 Digital Library Management System 1.0 jwt_refresh_token_middleware.go JwtRefreshAuth Authorization neutralization for logs

Post correlati

CVE-2024-36036 | Zoho ManageEngine ADAudit Plus up to 7260 information disclosure

CVE-2024-26151 | FelixSchwarz mjml-python 0.10.0 input validation

CVE-2024-6969 | SourceCodester Clinics Patient Management System 1.0 get_patient_history.php patient_id sql injection

CVE-2024-51093 | Snipe-IT 7.0.13 #files cross site scripting