Количество 2
Количество 2
CVE-2025-69971
FUXA v1.2.7 contains a hard-coded credential vulnerability in server/api/jwt-helper.js. The application uses a hard-coded secret key to sign and verify JWT Tokens. This allows remote attackers to forge valid admin tokens and bypass authentication to gain full administrative access.
GHSA-2r8f-cf6w-x5vq
FUXA contains a hard-coded credential vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-69971 FUXA v1.2.7 contains a hard-coded credential vulnerability in server/api/jwt-helper.js. The application uses a hard-coded secret key to sign and verify JWT Tokens. This allows remote attackers to forge valid admin tokens and bypass authentication to gain full administrative access. | 0% Низкий | 5 дней назад | |
| GHSA-2r8f-cf6w-x5vq FUXA contains a hard-coded credential vulnerability | 0% Низкий | 5 дней назад |
Уязвимостей на страницу