scitokens — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in scitokens, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-32727	SciTokens: Authorization Bypass via Path Traversal in Scope Validation CWE-22	8.1	High	2026-03-31
CVE-2026-32716	SciTokens: Authorization Bypass via Incorrect Scope Path Prefix Checking CWE-285	8.1	High	2026-03-31
CVE-2026-32714	SciTokens vulnerable to SQL Injection in KeyCache CWE-89	9.8	Critical	2026-03-31

All 3 known CVE vulnerabilities affecting scitokens with full Chinese analysis, references, and POCs where available.