Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-30	CVE-2020-26160	Missing Authorization vulnerability in Jwt-Go Project Jwt-Go jwt-go before 4.0.0-preview1 allows attackers to bypass intended access restrictions in situations with []string{} for m["aud"] (which is allowed by the specification). network low complexity jwt-go-project CWE-862	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.