CVE-2021-29451

Published: 2021-04-16T22:15Z

Last Modified: 2024-11-21T06:01Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt