VYPR

Packagist (Composer) package

lcobucci/jwt

pkg:composer/lcobucci/jwt

Vulnerabilities (1)

  • CVE-2021-41106Sep 28, 2021
    affected >= 3.4.0, < 3.4.6fixed 3.4.6

    JWT is a library to work with JSON Web Token and JSON Web Signature. Prior to versions 3.4.6, 4.0.4, and 4.1.5, users of HMAC-based algorithms (HS256, HS384, and HS512) combined with `Lcobucci\JWT\Signer\Key\LocalFileReference` as key are having their tokens issued/validated usin