Vulnerable E-Commerce App *OopsSec Store* Exploits Weak JWT Authentication

The deliberately vulnerable application OopsSec Store, an e-commerce site built with Next.js, features an authentication flaw due to misconfigured JWT tokens. The default token uses an insecure algorithm (alg: "none"), which is unsigned, allowing an attacker to manually modify the role field in the payload from CUSTOMER to ADMIN. After reconstructing the JWT and injecting it into the browser's local storage, access to the admin dashboard is granted without server-side verification. The vulnerability reveals a flag (OSS{w34k_jwt_n0n3_4lg0r1thm}) reserved for administrators. The application is designed for local and educational use, with provided test credentials (e.g., Alice). No specific date is mentioned.