Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-1848: fixed password length issues · Erudika/para@fa677c6

Business Logic Errors in GitHub repository erudika/para prior to 1.45.11.

CVE
Open in Source
#git#java

@@ -17,13 +17,12 @@ */ package com.erudika.para.core.utils;
import com.erudika.para.core.utils.Config; import com.erudika.para.core.App; import com.erudika.para.core.Sysprop; import com.erudika.para.core.Tag; import com.erudika.para.core.User; import static com.erudika.para.core.validation.ValidationUtils.*; import static com.erudika.para.core.validation.Constraint.*; import static com.erudika.para.core.validation.ValidationUtils.*; import java.util.ArrayList; import java.util.Arrays; import java.util.Collections; @@ -228,6 +227,68 @@ public void testValidateObject() { assertTrue(validateObject(app, s1).length == 0); }
@Test public void testPasswordConstraint() { User u = new User(); u.setName(“test”); u.setEmail(“[email protected]”); u.setIdentifier(“[email protected]”); assertTrue(validateObject(u).length == 0); u.setPassword(“T123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345670” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678” + “91234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891” + “23456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123” + “45678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345” + “67891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678” + “91234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891” + “23456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123” + “45678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345” + “67891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678” + “91234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891” + “23456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123” + “45678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345” + “67891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678” + “91234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891” + “23456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123” + “45678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345” + “67891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “78912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678” + “91234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891” + “23456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123” + “45678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345” + “67891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567” + “89123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789” + “12345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912345678912” + “34567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234567891234” + “56789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456789123456” + “789hellohellohellohello”); assertFalse(validateObject(u).length == 0); }
@Test public void testGetCoreValidationConstraints() { assertTrue(getCoreValidationConstraints().containsKey(“app”));

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE