github.com/sipcapture/homer-app uses insecure session management. The vulnerability exists as the JWT secret key is hard coded in constants.go
file, allowing a user to gain unauthorized access to the application if the default secret key is not changed.