Home/Alerts/Alert detail/

JWT Scan Rule

Risk:
Medium

Type:
Active

Summary: Scanner for finding vulnerabilities in JWT implementations.

Solution: See reference for further information. The solution depends on implementation details

References: https://cheatsheetseries.owasp.org/cheatsheets/JSON_Web_Token_Cheat_Sheet_for_Java.html

Top Security News

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)

Bitbucket services “hard down” due to major worldwide outage

SonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely Exploitation

Hackers exploit 16 zero-days on first day of Pwn2Own Automotive 2025

Windows Server 2025 released—here are the new features

Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure

U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Salt Typhoon

TikTok is back up in the US after Trump says he will extend deadline

Common Alerts

HighCloud Metadata Potentially Exposed

LowSecure Pages Include Mixed Content

LowCSP: X-Content-Security-Policy

HighSource Code Disclosure - /WEB-INF Folder

HighAdvanced SQL Injection

HighSource Code Disclosure - File Inclusion

LowDangerous JS Functions

LowX-Debug-Token Information Leak

HighSQL Injection - SQLite

MediumMissing Anti-clickjacking Header

Top CVE List

CVE-2024-50603 Aviatrix Controllers OS Command Injection Vulnerability

CVE-2024-47575 Fortinet FortiManager Missing Authentication Vulnerability

CVE-2024-49039 Microsoft Windows Task Scheduler Privilege Escalation Vulnerability

CVE-2020-11023 JQuery Cross-Site Scripting (XSS) Vulnerability

CVE-2025-21333 Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability

CVE-2024-55591 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

CVE-2025-0282 Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

CVE-2017-6736 Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

CVE-2024-50623 Cleo Multiple Products Unrestricted File Upload Vulnerability

CVE-2017-3881 Cisco IOS and IOS XE Remote Code Execution Vulnerability

Common CWEs

CWE-657 Violation of Secure Design Principles

CWE-1334 Unauthorized Error Injection Can Degrade Hardware Redundancy

CWE-109 Struts: Validator Turned Off

CWE-13 ASP.NET Misconfiguration: Password in Configuration File

CWE-581 Object Model Violation: Just One of Equals and Hashcode Defined

CWE-14 Compiler Removal of Code to Clear Buffers

CWE-1284 Improper Validation of Specified Quantity in Input

CWE-821 Incorrect Synchronization

CWE-231 Improper Handling of Extra Values

CWE-236 Improper Handling of Undefined Parameters

Free online web security scanner

Don't show website scan report rating on the leaderboard