CVE-2024-22513

CVE-2024-22513 · Severity

djangorestframework-simplejwt version 5.3.1 and before is vulnerable to information disclosure. A user can access web application resources even after their account has been disabled due to missing user validation checks via the for_user method.

Learn more about our Web App Pen Testing.