We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
Vulnerable Package issue exists @ Npm-http-signature-0.10.1 in branch master
Http-signature is vulnerable to easy timing attacks against signature verification. Mitigated by double-hashing before comparing values.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: e7941f4d-fb14-4e6e-9cdc-c12dbbe3cdc7 Branch: master Application: NodeGoat Severity: MEDIUM State: NOT_IGNORED Status: RECURRENT CWE: CWE-208
Additional Info Attack vector: NETWORK Attack complexity: HIGH Confidentiality impact: HIGH Availability impact: NONE
References Pull request Commit
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Vulnerable Package issue exists @ Npm-http-signature-0.10.1 in branch master
Http-signature is vulnerable to easy timing attacks against signature verification. Mitigated by double-hashing before comparing values.
Namespace: RobertMickleCx
Repository: NodeGoat
Repository Url: https://github.com/RobertMickleCx/NodeGoat
CxAST-Project: RobertMickleCx/NodeGoat
CxAST platform scan: e7941f4d-fb14-4e6e-9cdc-c12dbbe3cdc7
Branch: master
Application: NodeGoat
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-208
Additional Info
Attack vector: NETWORK
Attack complexity: HIGH
Confidentiality impact: HIGH
Availability impact: NONE
References
Pull request
Commit
The text was updated successfully, but these errors were encountered: