Broken validation of user Id for JWT Token
Medium
S
Semrush
Submitted None
Team Summary
Official summary from Semrush
Traffic Analytics Tool (TA) uses JWT tokens to store user subscription information (without any kind of personal information). JWT tokens are created by passing a user ID. There was an error with validation of user Id for JWT token.
Actions:
Reported by
a_d_a_m
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Business Logic Errors