Popular JWT cloud security library patches “remote” code execution hole

It’s remotely triggerable, but attackers would already have pretty deep network access if they could “prime” your server for compromise.

from Naked Security https://ift.tt/kJExRAf
via IFTTT