Popular JWT cloud security library patches “remote” code execution hole

It's remotely triggerable, but attackers would already have pretty deep network access if they could "prime" your server for compromise.

from Naked Security https://ift.tt/E6sncvV
via https://ifttt.com/ IFTTT