VYPR

npm package

cassproject

pkg:npm/cassproject

Vulnerabilities (1)

  • CVE-2022-29229May 18, 2022
    affected < 1.5.8fixed 1.5.8

    CaSS is a Competency and Skills System. CaSS Library, (npm:cassproject) has a missing cryptographic step when storing cryptographic keys that can allow a server administrator access to an account’s cryptographic keys. This affects CaSS servers using standalone username/password a