13Oca
CVE-2023-46943 | evershop up to 1.0.0-rc.7 JSON Web Token hard-coded key
A vulnerability was found in evershop up to 1.0.0-rc.7. It has been rated as problematic. This issue affects some unknown processing of the component JSON Web Token Handler. The manipulation leads to use of hard-coded cryptographic key . The identification of this vulnerability is CVE-2023-46943. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.