CVE-2024-8297 | kitsada8621 Digital Library Management System 1.0 jwt_refresh_token_middleware.go JwtRefreshAuth Authorization neutralization for logs

Inserito da Angelo Barbosa | Ago 29, 2024 | CVE

A vulnerability was found in kitsada8621 Digital Library Management System 1.0. It has been classified as problematic. Affected is the function JwtRefreshAuth of the file middleware/jwt_refresh_token_middleware.go. The manipulation of the argument Authorization leads to improper output neutralization for logs.

This vulnerability is traded as CVE-2024-8297. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-8297 | kitsada8621 Digital Library Management System 1.0 jwt_refresh_token_middleware.go JwtRefreshAuth Authorization neutralization for logs

Post correlati

CVE-2022-48463 | Unisoc S8000 Wifi Service out-of-bounds write

CVE-2024-47847 | Wikimedia Cargo Extension 3.6.0 on Mediawiki cross site scripting

CVE-2021-47047 | Linux Kernel up to 5.10.36/5.11.20/5.12.3 spi-zynqmp-gqspi dma_map_single buffer overflow

CVE-2022-45168 | Livebox Collaboration vDesk up to 018 Two-factor Authentication /login/backup_code improper authentication