Course
The Code Review Snippet challenge "jwt.php" involves analyzing a vulnerable PHP function named verify. The main issue lies in the improper validation of the JWT signature, allowing an attacker to bypass verification by providing a JWT without a signature.
Skills covered
Code Review
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
