What kind of vulnerability is it? Who is impacted?, https://github.com/fxbin/bubble-fireworks before version XXX did not properly verify the signature of JSON Web Tokens.
This allows to forge a valid JWT.
Patches
Has the problem been patched? What versions should users upgrade to?
For more information
If you have any questions or comments about this advisory:
Impact
What kind of vulnerability is it? Who is impacted?,
https://github.com/fxbin/bubble-fireworks before version XXX did not properly verify the signature of JSON Web Tokens.
This allows to forge a valid JWT.
Patches
Has the problem been patched? What versions should users upgrade to?
For more information
If you have any questions or comments about this advisory: