Zihanggao Php-jwt

1 CVEs affecting Zihanggao Php-jwt. Latest disclosed: 2024-02-08. Critical: 1, High: 0.

Top CVEs affecting Zihanggao Php-jwt
CVESeverityScorePublishedSummary
CVE-2024-25191Critical9.82024-02-08php-jwt 1.0.0 uses strcmp (which is not constant time) to verify authentication, which makes it easier to bypass authentication via a timing side channel.