VYPR

Packagist (Composer) package

gree/jose

pkg:composer/gree/jose

Vulnerabilities (1)

  • CVE-2016-5431Aug 7, 2019
    affected < 2.2.1fixed 2.2.1

    The PHP JOSE Library by Gree Inc. before version 2.2.1 is vulnerable to key confusion/algorithm substitution in the JWS component resulting in bypassing the signature verification via crafted tokens.