VYPR

Maven package

com.nablarch.framework/nablarch-fw-web

pkg:maven/com.nablarch.framework/nablarch-fw-web

Vulnerabilities (1)

  • CVE-2019-5919Mar 12, 2019
    affected < 1.5.1fixed 1.5.1

    An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.