Impact

What kind of vulnerability is it? Who is impacted?,
https://github.com/fxbin/bubble-fireworks before version XXX did not properly verify the signature of JSON Web Tokens.
This allows to forge a valid JWT.

Patches

Has the problem been patched? What versions should users upgrade to?

For more information

If you have any questions or comments about this advisory:

• Open an issue in example link to repo