Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-5p8v-58qm-c7fp
  • PyPI/python-jwt
 python-jwt vulnerable to token forgery with new claims 21 Sep 2022
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2022-259
  • PyPI/python-jwt
  • github.com/davedoesdev/python-jwt
 See record for full details 01 Sep 2022
  • Fix available
GHSA-fpjm-rp2g-3r4c
  • PyPI/drf-jwt
 Django Rest Framework jwt allows obtaining new token from notionally invalidated token 05 Jun 2020
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2020-40
  • PyPI/drf-jwt
 See record for full details 15 Mar 2020
  • Fix available