Researcher compromised the Toyota Supplier Management Network
Security Affairs
FEBRUARY 8, 2023
A user can usually get a JWT after logging into a website using his email and password The analysis of the GSPIMS app allowed the researcher to discover a function named “GenerataJWT” that allows to generate a JWT based on a provided valid email address without providing any password. ” concludes the expert.
Let's personalize your content