Every CVE whose affected-product data names Jwt-go Project Jwt-go, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-26160 — CVSS 7.5 (high): jwt-go before 4.0.0-preview1 allows attackers to bypass intended access restrictions in situations with []string{} for m["aud"] (which is…