MidnightBSD

Advisories for dwyl

CVE-2016-10525 HIGH

When attempting to allow authentication mode `try` in hapi, hapi-auth-jwt2 version 5.1.1 introduced an issue whereby people could bypass authentication.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
dwyl hapi-auth-jwt2 *