Regex Flaw

Whitespace Flaw Re-Opens Critical JWT “Algorithm Confusion” Bypass fast-jwt JWT Algorithm Confusion

fast-jwt JWT Algorithm Confusion

Whitespace Flaw Re-Opens Critical JWT “Algorithm Confusion” Bypass

Do Son April 6, 2026

Security researchers have disclosed two major vulnerabilities within fast-jwt, a high-performance library used to implement JSON Web...

Researcher Details Critical Authentication Bypasses in WSO2 API Manager and Identity Server WSO2 Critical Auth Bypass, Regex Flaw

WSO2 Critical Auth Bypass, Regex Flaw

Researcher Details Critical Authentication Bypasses in WSO2 API Manager and Identity Server

Do Son October 30, 2025

Security researcher Crnkovic has disclosed three critical vulnerabilities — CVE-2025-9152, CVE-2025-10611, and CVE-2025-9804 — in WSO2 API...