VYPR

Maven package

org.expressme/JOpenId

pkg:maven/org.expressme/JOpenId

Vulnerabilities (1)

  • CVE-2010-10006Jan 17, 2023
    affected < 1.08fixed 1.08

    A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack