CVE-2026-57997 | Strapi up to 5.6.x users-permissions.jwt users-permissions.jwt.algorithm risky encryption (Issue 26587)

SecurityVulns

A vulnerability identified as problematic has been detected in Strapi up to 5.6.x. The impacted element is the function plugin::users-permissions.jwt.algorithm of the file users-permissions.jwt. Performing a manipulation results in risky cryptographic algorithm.

This vulnerability was named CVE-2026-57997. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More