VYPR

Maven package

com.erudika/para-server

pkg:maven/com.erudika/para-server

Vulnerabilities (2)

  • CVE-2025-49009MedJun 5, 2025
    affected < 1.50.8fixed 1.50.8

    Para is a multitenant backend server/framework for object persistence and retrieval. A vulnerability that exists in versions prior to 1.50.8 in `FacebookAuthFilter.java` results in a full request URL being logged during a failed request to a Facebook user profile. The log include

  • CVE-2025-48955MedJun 2, 2025
    affected < 1.50.8fixed 1.50.8

    Para is a multitenant backend server/framework for object persistence and retrieval. A vulnerability that exists in versions prior to 1.50.8 exposes both access and secret keys in logs without redaction. These credentials are later reused in variable assignments for persistence b