Data Structure
Java
Python
HTML
Interview Preparation
- Tutorials
- Courses
- Tracks
You review a JWT: header {"alg":"none","typ":"JWT"}; server accepts it. Impact?
Last Updated :
Discuss
Comments
You review a JWT: header {"alg":"none","typ":"JWT"}; server accepts it. Impact?
Low, token still signed by “none”
High, signature is effectively bypassed
None, because payload still base64url
Medium, only valid for admins
This question is part of this quiz :
Cyber Quiz Day 36Tags:
Share your thoughts in the comments
GeeksforGeeks