Open mgonzalezcx opened 2 years ago
JWT_No_Signature_Verification issue exists @ webgoat-integration-tests/src/test/java/org/owasp/webgoat/JWTLessonTest.java in branch develop
The JWT is not properly verified at the parse in 69 at the file webgoat-integration-tests\src\test\java\org\owasp\webgoat\JWTLessonTest.java.
Severity: Medium
CWE:287
Vulnerability details and guidance
Checkmarx
Training Recommended Fix
Lines: 72
Code (Line #72):
Jwt jwt = Jwts.parser().setSigningKey(TextCodec.BASE64.encode(key)).parse(token);
JWT_No_Signature_Verification issue exists @ webgoat-integration-tests/src/test/java/org/owasp/webgoat/JWTLessonTest.java in branch develop
The JWT is not properly verified at the parse in 69 at the file webgoat-integration-tests\src\test\java\org\owasp\webgoat\JWTLessonTest.java.
Severity: Medium
CWE:287
Vulnerability details and guidance
Checkmarx
Training Recommended Fix
Lines: 72
Code (Line #72):