VYPR

Maven package

org.jboss.ironjacamar/ironjacamar-jdbc

pkg:maven/org.jboss.ironjacamar/ironjacamar-jdbc

Vulnerabilities (1)

  • CVE-2012-3428Dec 20, 2012
    affected < 1.0.12.Finalfixed 1.0.12.Final

    The IronJacamar container before 1.0.12.Final for JBoss Application Server, when allow-multiple-users is enabled in conjunction with a security domain, does not use the credentials supplied in a getConnection function call, which allows remote attackers to obtain access to an arb