VYPR

Maven package

org.jasypt/jasypt

pkg:maven/org.jasypt/jasypt

Vulnerabilities (1)

  • CVE-2014-9970HigMay 21, 2017
    affected < 1.9.2fixed 1.9.2

    jasypt before 1.9.2 allows a timing attack against the password hash comparison.