Angular Jwt
Approved changes feed: RSS · Atom
cpe:2.3:a:auth0:angular-jwt:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Auth0 (bd827468-a826-51d4-9e05-912ec56b4756) |
|---|---|
| Product | Angular Jwt (11d0d878-bb28-57f1-9ec1-02783be3fea0) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/auth0/angular-jwt |
purl2cpe | 2026-06-01 10:16:14.652796 |
pkg:maven/org.webjars.bower/angular-jwt |
purl2cpe | 2026-06-01 10:16:14.652800 |
pkg:npm/angular-jwt |
purl2cpe | 2026-06-01 10:16:14.652803 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-11537 |
vulnerable | 2026-06-03 14:38:01.650392 |
Details available
Auth0 angular-jwt before 0.1.10 treats whiteListedDomains entries as regular expressions, which allows remote attackers with knowledge of the jwtInterceptorProvider.whiteListedDomains setting to bypass the domain whitelist filter via a crafted domain.
Published: 2018-06-19T19:00:00.000Z
Updated: 2024-08-05T08:10:14.589Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.