A critical vulnerability in OpenPGP.js, a widely used JavaScript library for encrypted messaging and digital signatures, has been patched after researchers discovered it allowed attackers to spoof message signatures, potentially undermining the trust model of public key cryptography. The flaw, tracked as CVE-2025-47934, was uncovered by security researchers Edoardo Geraci and Thomas Rinsma of Codean […] The post OpenPGP.js Vulnerability Allows Attackers to Bypass Message Signature Verification appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
First seen on gbhackers.com
Jump to article: gbhackers.com/openpgp-js-vulnerability-allows-attackers/
