Known Vulnerabilities for Json-web-token by Joaquimserafim
Listed below are 10 of the newest known vulnerabilities associated with "Json-web-token" by "Joaquimserafim".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58579 json | RAGFlow before 0.26.3 stores an agent pipeline (DSL) node name without sanitization: the agent update endpoint normalizes the... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-57522 json | Bitwarden Server before 2026.5.0 contains a JSON injection vulnerability in IntegrationTemplateProcessor.ReplaceTokens(), whi... | Not Provided | 2026-06-25 | 2026-06-26 |
| CVE-2026-54066 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the patch for CVE-2026-41894 ("Path Traversal ... | Not Provided | 2026-06-24 | 2026-06-25 |
| CVE-2026-53471 json | A flaw was found in migration-planner. The agent-API middleware processes JSON Web Tokens (JWTs) for authentication, but its ... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-50636 json | The RemoteControl API methods invite_participants and remind_participants pass a caller-supplied token-ID array into TokenDyn... | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-48990 json | joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption (JOSE) standards. I... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-48526 json | PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, when the verifier is decoding JSON Web Tokens, while sup... | Not Provided | 2026-05-28 | 2026-07-06 |
| CVE-2026-48525 json | PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unenco... | Not Provided | 2026-05-28 | 2026-05-28 |
| CVE-2026-48524 json | PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient.get_signing_key() forces a fresh HTTP reques... | Not Provided | 2026-05-28 | 2026-05-28 |
| CVE-2026-48523 json | PyJWT is a JSON Web Token implementation in Python. From 2.9.0 to 2.12.1, there is a verifier-side algorithm allow-list bypas... | Not Provided | 2026-05-28 | 2026-05-28 |