VYPR

npm package

cookie-signature

pkg:npm/cookie-signature

Vulnerabilities (1)

  • CVE-2016-1000236Nov 19, 2019
    affected < 1.0.4fixed 1.0.4

    Node-cookie-signature before 1.0.6 is affected by a timing attack due to the type of comparison used.