Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

Project: ffl-core

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
ffl-core-api-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-api@3.1.2 024
ffl-core-commons-3.1.2-repackaged.jarpkg:maven/com.sintia.ffl.core/ffl-core-commons@3.1.2 031
ffl-core-commons-3.1.2-repackaged.jar: commons-lang3-3.20.0.jarcpe:2.3:a:apache:commons_lang:3.20.0:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-lang3@3.20.0 0Highest144
ffl-core-commons-3.1.2-repackaged.jar: jackson-annotations-2.17.2.jarcpe:2.3:a:fasterxml:jackson-core:2.17.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.17.2:*:*:*:*:*:*:*		pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.17.2 0Highest37
ffl-core-commons-3.1.2-repackaged.jar: jakarta.annotation-api-2.1.1.jarcpe:2.3:a:oracle:projects:2.1.1:*:*:*:*:*:*:*pkg:maven/jakarta.annotation/jakarta.annotation-api@2.1.1 0Low41
ffl-core-commons-3.1.2-repackaged.jar: jul-to-slf4j-2.0.18.jarpkg:maven/org.slf4j/jul-to-slf4j@2.0.18 030
ffl-core-commons-3.1.2-repackaged.jar: log4j-api-2.25.4.jarcpe:2.3:a:apache:log4j:2.25.4:*:*:*:*:*:*:*pkg:maven/org.apache.logging.log4j/log4j-api@2.25.4 0Highest42
ffl-core-commons-3.1.2-repackaged.jar: log4j-to-slf4j-2.25.4.jarpkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.25.4 038
ffl-core-commons-3.1.2-repackaged.jar: logback-core-1.5.34.jarcpe:2.3:a:qos:logback:1.5.34:*:*:*:*:*:*:*pkg:maven/ch.qos.logback/logback-core@1.5.34 0Highest38
ffl-core-commons-3.1.2-repackaged.jar: mapstruct-1.5.5.Final.jarpkg:maven/org.mapstruct/mapstruct@1.5.5.Final 022
ffl-core-commons-3.1.2-repackaged.jar: micrometer-commons-1.15.12.jar 050
ffl-core-commons-3.1.2-repackaged.jar: micrometer-observation-1.15.12.jar 052
ffl-core-commons-3.1.2-repackaged.jar: slf4j-api-2.0.18.jarpkg:maven/org.slf4j/slf4j-api@2.0.18 028
ffl-core-commons-3.1.2-repackaged.jar: snakeyaml-2.3.jarcpe:2.3:a:snakeyaml_project:snakeyaml:2.3:*:*:*:*:*:*:*pkg:maven/org.yaml/snakeyaml@2.3 0Highest41
ffl-core-commons-3.1.2-repackaged.jar: spring-aop-6.2.19.jarcpe:2.3:a:pivotal_software:spring_framework:6.2.19:*:*:*:*:*:*:* 0High13
ffl-core-commons-3.1.2-repackaged.jar: spring-boot-3.5.15.jar 014
ffl-core-commons-3.1.2-repackaged.jar: spring-boot-autoconfigure-3.5.15.jar 018
ffl-core-commons-3.1.2-repackaged.jar: spring-boot-jarmode-tools-3.5.15.jar 021
ffl-core-commons-3.1.2-repackaged.jar: spring-core-6.2.19.jarcpe:2.3:a:pivotal_software:spring_framework:6.2.19:*:*:*:*:*:*:*
cpe:2.3:a:springsource:spring_framework:6.2.19:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_framework:6.2.19:*:*:*:*:*:*:*		 0Highest16
ffl-core-commons-3.1.2-repackaged.jar: spring-security-web-6.5.11.jarcpe:2.3:a:pivotal_software:spring_security:6.5.11:*:*:*:*:*:*:*HIGH1Highest17
ffl-core-commons-3.1.2-repackaged.jar: spring-security-web-6.5.11.jar: spring-security-webauthn.js 00
ffl-core-commons-3.1.2-repackaged.jar: spring-web-6.2.19.jar 013
ffl-core-commons-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-commons@3.1.2 024
ffl-core-dal-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-dal@3.1.2 024
ffl-core-database-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-database@3.1.2 031
ffl-core-database-3.1.2.jar: HikariCP-6.3.3.jarpkg:maven/com.zaxxer/HikariCP@6.3.3 036
ffl-core-database-3.1.2.jar: angus-activation-2.0.3.jarpkg:maven/org.eclipse.angus/angus-activation@2.0.3 034
ffl-core-database-3.1.2.jar: antlr4-runtime-4.13.0.jarpkg:maven/org.antlr/antlr4-runtime@4.13.0 029
ffl-core-database-3.1.2.jar: byte-buddy-1.17.8.jarpkg:maven/net.bytebuddy/byte-buddy@1.17.8 028
ffl-core-database-3.1.2.jar: classmate-1.7.3.jarpkg:maven/com.fasterxml/classmate@1.7.3 051
ffl-core-database-3.1.2.jar: flyway-core-11.7.2.jarpkg:maven/org.flywaydb/flyway-core@11.7.2 018
ffl-core-database-3.1.2.jar: flyway-database-postgresql-11.7.2.jarpkg:maven/org.flywaydb/flyway-database-postgresql@11.7.2 018
ffl-core-database-3.1.2.jar: hibernate-commons-annotations-7.0.3.Final.jar 016
ffl-core-database-3.1.2.jar: hibernate-core-6.6.9.Final.jarcpe:2.3:a:hibernate:hibernate_orm:6.6.9:*:*:*:*:*:*:* 0Highest21
ffl-core-database-3.1.2.jar: istack-commons-runtime-4.1.2.jarpkg:maven/com.sun.istack/istack-commons-runtime@4.1.2 028
ffl-core-database-3.1.2.jar: jackson-annotations-2.21.jarcpe:2.3:a:fasterxml:jackson-core:2.21:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21:*:*:*:*:*:*:*		pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.21 0Highest35
ffl-core-database-3.1.2.jar: jackson-core-2.21.4.jarcpe:2.3:a:fasterxml:jackson-core:2.21.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.4:*:*:*:*:*:*:*		pkg:maven/com.fasterxml.jackson.core/jackson-core@2.21.4 0Highest46
ffl-core-database-3.1.2.jar: jackson-databind-2.21.4.jarcpe:2.3:a:fasterxml:jackson-core:2.21.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.21.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.4:*:*:*:*:*:*:*		pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.21.4MEDIUM1Highest40
ffl-core-database-3.1.2.jar: jackson-dataformat-toml-2.21.4.jarcpe:2.3:a:fasterxml:jackson-dataformat-xml:2.21.4:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.dataformat/jackson-dataformat-toml@2.21.4 0Highest38
ffl-core-database-3.1.2.jar: jackson-datatype-jsr310-2.21.4.jarcpe:2.3:a:fasterxml:jackson-modules-java8:2.21.4:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.21.4 0Low44
ffl-core-database-3.1.2.jar: jakarta.activation-api-2.1.4.jarpkg:maven/jakarta.activation/jakarta.activation-api@2.1.4 044
ffl-core-database-3.1.2.jar: jakarta.inject-api-2.0.1.jarpkg:maven/jakarta.inject/jakarta.inject-api@2.0.1 055
ffl-core-database-3.1.2.jar: jakarta.persistence-api-3.1.0.jarpkg:maven/jakarta.persistence/jakarta.persistence-api@3.1.0 039
ffl-core-database-3.1.2.jar: jakarta.transaction-api-2.0.1.jarcpe:2.3:a:oracle:projects:2.0.1:*:*:*:*:*:*:*pkg:maven/jakarta.transaction/jakarta.transaction-api@2.0.1 0Low47
ffl-core-database-3.1.2.jar: jakarta.xml.bind-api-4.0.5.jarpkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.5 030
ffl-core-database-3.1.2.jar: jandex-3.2.0.jarpkg:maven/io.smallrye/jandex@3.2.0 026
ffl-core-database-3.1.2.jar: jaxb-core-4.0.9.jarpkg:maven/org.glassfish.jaxb/jaxb-core@4.0.9 037
ffl-core-database-3.1.2.jar: jaxb-runtime-4.0.9.jarpkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.9 039
ffl-core-database-3.1.2.jar: jboss-logging-3.6.3.Final.jarpkg:maven/org.jboss.logging/jboss-logging@3.6.3.Final 040
ffl-core-database-3.1.2.jar: postgresql-42.7.11.jarcpe:2.3:a:postgresql:postgresql:42.7.11:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql_jdbc_driver:42.7.11:*:*:*:*:*:*:*		 0Highest33
ffl-core-database-3.1.2.jar: spring-tx-6.2.19.jarcpe:2.3:a:pivotal_software:spring_framework:6.2.19:*:*:*:*:*:*:* 0High11
ffl-core-database-3.1.2.jar: txw2-4.0.9.jarpkg:maven/org.glassfish.jaxb/txw2@4.0.9 028
ffl-core-services-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-services@3.1.2 024
ffl-core-sia-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-core-sia@3.1.2 024
ffl-test-3.1.2.jarpkg:maven/com.sintia.ffl.core/ffl-test@3.1.2 022
prettify.js 00
sort.js 00

Dependencies (vulnerable)

ffl-core-api-3.1.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-api/target/ffl-core-api-3.1.2.jar
MD5: 91aa589edaef05ce5d234f224bb18e3f
SHA1: e1ecfafdf6671afd88cb26ccd8f9f18a0bc7c5f2
SHA256:fe852a63a0224eaf2c8bb0d2cf6bdeaf0b2f965215f1a9bfd904e74cccde86e4

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-api@3.1.2  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar

Description:

Module contenant le core du back-office

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar
MD5: 5eac73bdf0b7ef91bdbefeff3a2d658a
SHA1: f0679df4eba1bd0e35e3275d255303c11e31488a
SHA256:afb1daa3538df962fafc173b9203b1a67ba7cd34f8e62a0a3830cd9a3fe843aa

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-commons@3.1.2  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar: commons-lang3-3.20.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17, 21 and 25 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/commons-lang3-3.20.0.jar
MD5: 4b29562ded527aa074e1d44f8646dac5
SHA1: 65897b3e5731220962e659e001904af3c3cbeba9
SHA256:69e5c9fa35da7a51a5fd2099dfe56a2d8d32cf233e2f6d770e796146440263f4

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: jackson-annotations-2.17.2.jar

Description:

Core annotations used for value types, used by Jackson data binding package.

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/jackson-annotations-2.17.2.jar
MD5: e68e7e593ae47e106421688707683297
SHA1: 147b7b9412ffff24339f8aba080b292448e08698
SHA256:873a606e23507969f9bbbea939d5e19274a88775ea5a169ba7e2d795aa5156e1

Identifiers

  • pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.17.2  (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-core:2.17.2:*:*:*:*:*:*:*  (Confidence:Highest)  
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.17.2:*:*:*:*:*:*:*  (Confidence:Low)  

ffl-core-commons-3.1.2-repackaged.jar: jakarta.annotation-api-2.1.1.jar

Description:

Jakarta Annotations API

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/jakarta.annotation-api-2.1.1.jar
MD5: 5dac2f68e8288d0add4dc92cb161711d
SHA1: 48b9bda22b091b1f48b13af03fe36db3be6e1ae3
SHA256:5f65fdaf424eee2b55e1d882ba9bb376be93fb09b37b808be6e22e8851c909fe

Identifiers

  • pkg:maven/jakarta.annotation/jakarta.annotation-api@2.1.1  (Confidence:High)
  • cpe:2.3:a:oracle:projects:2.1.1:*:*:*:*:*:*:*  (Confidence:Low)  

ffl-core-commons-3.1.2-repackaged.jar: jul-to-slf4j-2.0.18.jar

Description:

JUL to SLF4J bridge

License:

https://opensource.org/license/mit
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/jul-to-slf4j-2.0.18.jar
MD5: f339bf7648049b2105e180cab6c45c9d
SHA1: 79739c98001d5c9d078d087d5a348ec9e474ec8f
SHA256:cbb7d1aaaa9e871eb1a06594abd911bf97027152976edf1edc315be75239204e

Identifiers

  • pkg:maven/org.slf4j/jul-to-slf4j@2.0.18  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar: log4j-api-2.25.4.jar

Description:

The logging API of the Log4j project.
    Library and application code can log through this API.
    It contains a simple built-in implementation (`SimpleLogger`) for trivial use cases.
    Production applications are recommended to use Log4j API in combination with a fully-fledged implementation, such as Log4j Core.

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/log4j-api-2.25.4.jar
MD5: 5efb17ae45b749c1fbfedb3d93375cfc
SHA1: 89ff2217b193fb187b134aa6ebcbfa8a28b018a9
SHA256:c4b642a7f047275215de117e0e3847eb2c7711d84a0aa7433e7b3c096daf341d

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: log4j-to-slf4j-2.25.4.jar

Description:

Forwards the Log4j API calls to SLF4J.
    (Refer to the `log4j-slf4j[2]-impl` artifacts for forwarding SLF4J to the Log4j API.)

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/log4j-to-slf4j-2.25.4.jar
MD5: b3d45f5534aa71da607e403ce1519977
SHA1: 68df56640a5d245192e91bd2ac89e504b477cc10
SHA256:d7b78fc0aaaa5e8ada388b29d718b0ab187e512965bed0b259bb4ab299f13db2

Identifiers

  • pkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.25.4  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar: logback-core-1.5.34.jar

Description:

logback-core module

License:

https://www.eclipse.org/legal/epl-v20.html, https://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/logback-core-1.5.34.jar
MD5: ef459237a22ab546dd001ff612dce80d
SHA1: 378692f76c337b3325c15bffb89e013dc1f897b4
SHA256:42eda264c0c650c2bec59e66151a88b708a8663dc1b49d788202d53e78b8caae

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: mapstruct-1.5.5.Final.jar

Description:

An annotation processor for generating type-safe bean mappers

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/mapstruct-1.5.5.Final.jar
MD5: 9f2f737ffa2496ca5c40dcc323068803
SHA1: 2ca3cbe39b6e9ea8d5ea521965a89bef2a1e8eeb
SHA256:6391e07982855dd804d825b63a55ab9251003716547216e5f581123c841328d5

Identifiers

  • pkg:maven/org.mapstruct/mapstruct@1.5.5.Final  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar: micrometer-commons-1.15.12.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/micrometer-commons-1.15.12.jar
MD5: 8172f342d797138ec7a1a20e0332568c
SHA1: eb539638d48571fa6ce4ea3eb8417cab37a63438
SHA256:4b779cf7acb0534bb1f8e964f25200037ecb3944368f859a630fa637d6d5d7c0

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: micrometer-observation-1.15.12.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/micrometer-observation-1.15.12.jar
MD5: b6ea6ebf93debb874d7c10f3ae79a471
SHA1: 1d96fcaec8d2516236dfcb9914108e14bfd02238
SHA256:54483e68ed44af1bb0c36d1df2235d36f233e459d52f5a3be3e69813827a6300

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: slf4j-api-2.0.18.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/slf4j-api-2.0.18.jar
MD5: fe2837bd49bfb76657419002fed20ca9
SHA1: 78a9e7a37cd6360e0b818e86341b24123d28d4df
SHA256:44508fd1576500688c790b190acdd16fec4f8c79a3e0b900afd70503cf055f55

Identifiers

  • pkg:maven/org.slf4j/slf4j-api@2.0.18  (Confidence:High)

ffl-core-commons-3.1.2-repackaged.jar: snakeyaml-2.3.jar

Description:

YAML 1.1 parser and emitter for Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/snakeyaml-2.3.jar
MD5: 2a1c2ee8923dcd6bd6d025751af5df37
SHA1: 936b36210e27320f920536f695cf1af210c44586
SHA256:63a76fe66b652360bd4c2c107e6f0258daa7d4bb492008ba8c26fcd230ff9146

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: spring-aop-6.2.19.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-aop-6.2.19.jar
MD5: 36ab0f0a76202a0f8cd077fd323372a5
SHA1: 86a538bb7b2be38a0afc4ef049784def10a86c62
SHA256:a11b93539d80b02caf76171db2da96df39abebbfef49a2fadd6dda0779f2e20b

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: spring-boot-3.5.15.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-boot-3.5.15.jar
MD5: cd0efbe329f64325061488023e25de14
SHA1: c06a102c231e4a0a53085d93c3a121f3a05d6825
SHA256:1d3ea175f61f492d95cbca457d6cc9cf1b696b550422c1b424d50dfa58f7da15

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: spring-boot-autoconfigure-3.5.15.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-boot-autoconfigure-3.5.15.jar
MD5: 90d33d85f52755cace278df3bdd9f89f
SHA1: 2ae6e14e304afe1e56bca3eb607e89b6dbf76f77
SHA256:180af16bbaa61ae70b3d8c533fe36264b1305d4a6916965ed86d0f4e47b73b3b

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: spring-boot-jarmode-tools-3.5.15.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-boot-jarmode-tools-3.5.15.jar
MD5: a2c10f599de1331f1421794afeaf0be8
SHA1: a7ab70a942a3ea366cef12d2610dcb65cd92b771
SHA256:0ef100c6915f599606de3d46ae898e7d46594a47db311071a488ee50b2f58a55

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: spring-core-6.2.19.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-core-6.2.19.jar
MD5: 4afe3968028c2b743dbff2d79013e144
SHA1: 691459d4644894dae8e5c2d9550a4cfb8302f62f
SHA256:52146689e71a911c92bac26677d73c692512a739893a57710cc233591756bff6

Identifiers

ffl-core-commons-3.1.2-repackaged.jar: spring-security-web-6.5.11.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-security-web-6.5.11.jar
MD5: 9e6b94f61b08fe8d113a7835bb994576
SHA1: eeee13020ef81f290633e68fe062bccba062774e
SHA256:50df9fc76162d33cf8b5410cf7a7a969abd42a5ecddb284aab4f453cb5512306

Identifiers

CVE-2018-1258  

Spring Framework version 5.0.5 when used in combination with any versions of Spring Security contains an authorization bypass when using method security. An unauthorized malicious user can gain unauthorized access to methods that should be restricted.
CWE-863 Incorrect Authorization

CVSSv3:
  • Base Score: HIGH (8.8)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:2.8/RC:R/MAV:A
CVSSv2:
  • Base Score: MEDIUM (6.5)
  • Vector: /AV:N/AC:L/Au:S/C:P/I:P/A:P

References:

Vulnerable Software & Versions: (show all)

ffl-core-commons-3.1.2-repackaged.jar: spring-security-web-6.5.11.jar: spring-security-webauthn.js

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-security-web-6.5.11.jar/org/springframework/security/spring-security-webauthn.js
MD5: d8d90d854a23d021c2e758b3eebce213
SHA1: 7814ccd3adc2388f52b2658bf5fc30b457949ab6
SHA256:044a2b8d7e995bff815565678631a2d3a5cc0aa96ef8ac35cfacb579307f77a9

Identifiers

  • None

ffl-core-commons-3.1.2-repackaged.jar: spring-web-6.2.19.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2-repackaged.jar/BOOT-INF/lib/spring-web-6.2.19.jar
MD5: 1d5ca2b445acea292d5787536c069a36
SHA1: f1dc7b238611aeaf9e256a230aa089057cf0e5b3
SHA256:ca88e364ecebee61163e2260e8a20584138eca74e28a050d6a2ef6302bad2f2d

Identifiers

  • None

ffl-core-commons-3.1.2.jar

Description:

Module contenant le core du back-office

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-commons/target/ffl-core-commons-3.1.2.jar
MD5: acba71f2def9032f781209b8b46c522e
SHA1: e303db85305a6185d46e8b0b9534094bd54f1cf6
SHA256:804540b2eef9b4f39704cd0f47d4716bea77c1f25a106590442f73f595442d8b

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-commons@3.1.2  (Confidence:High)

ffl-core-dal-3.1.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-dal/target/ffl-core-dal-3.1.2.jar
MD5: ff777361988cc87e0e23b84d4de9a801
SHA1: 6c4a698fcf633c4d7827e0769d3668ff22f0b46c
SHA256:9cb460771d9d13b3574e85c7ba6650d800b021f116aba004353f606841768843

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-dal@3.1.2  (Confidence:High)

ffl-core-database-3.1.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar
MD5: 41b13ecbfa11b3bd2e61f48b016d27fc
SHA1: 303e063e10ddfadbaf8e9b897d7e98fa307c7b7d
SHA256:bb3ab9fe98aef17e4c40d89029e703d9509cc5f7ab61fc0cb74b7f575212599d

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-database@3.1.2  (Confidence:High)

ffl-core-database-3.1.2.jar: HikariCP-6.3.3.jar

Description:

Ultimate JDBC Connection Pool

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/HikariCP-6.3.3.jar
MD5: a5c7bb14f24a598a87118c9f73641466
SHA1: 7c5aec1e47a97ff40977e0193018865304ea9585
SHA256:709f378c05756280939ce50fc1b1f1a53bb8e1899dc1b249f21f12703640b48b

Identifiers

  • pkg:maven/com.zaxxer/HikariCP@6.3.3  (Confidence:High)

ffl-core-database-3.1.2.jar: angus-activation-2.0.3.jar

Description:

 Implementation

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/angus-activation-2.0.3.jar
MD5: ad20392145690b36b4f950fe31a31a2a
SHA1: 7f80607ea5014fef0b1779e6c33d63a88a45a563
SHA256:a6bd35c538cf90fff941ad6258c40c08fca0b5c9c3f536c657114f27ce0527a7

Identifiers

  • pkg:maven/org.eclipse.angus/angus-activation@2.0.3  (Confidence:High)

ffl-core-database-3.1.2.jar: antlr4-runtime-4.13.0.jar

Description:

The ANTLR 4 Runtime

License:

https://www.antlr.org/license.html
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/antlr4-runtime-4.13.0.jar
MD5: bff95723c494b332b14575d713a65df4
SHA1: 5a02e48521624faaf5ff4d99afc88b01686af655
SHA256:bd7f7b5d07bc0b047f10915b32ca4bb1de9e57d8049098882e4453c88c076a5d

Identifiers

  • pkg:maven/org.antlr/antlr4-runtime@4.13.0  (Confidence:High)

ffl-core-database-3.1.2.jar: byte-buddy-1.17.8.jar

Description:

        Byte Buddy is a Java library for creating Java classes at run time.
        This artifact is a build of Byte Buddy with all ASM dependencies repackaged into its own name space.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/byte-buddy-1.17.8.jar
MD5: ac7292226046cb7206b349e21affecfe
SHA1: af5735f63d00ca47a9375fae5c7471a36331c6ed
SHA256:2b5ddc8c1f4234bdb7cb45338a8e10a13e0e3ca473e91d5d821d681127ea8ba1

Identifiers

  • pkg:maven/net.bytebuddy/byte-buddy@1.17.8  (Confidence:High)

ffl-core-database-3.1.2.jar: classmate-1.7.3.jar

Description:

Library for introspecting types with full generic information
        including resolving of field and method types.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/classmate-1.7.3.jar
MD5: d1a4a85ab782827adfa82772e3b5f483
SHA1: f61c7e7b81e9249b0f6a05914eff9d54fb09f4a0
SHA256:75fbda45456f123fb6e2028a6189442d8d0730b357adce4c0a6d7e789f70669b

Identifiers

  • pkg:maven/com.fasterxml/classmate@1.7.3  (Confidence:High)

ffl-core-database-3.1.2.jar: flyway-core-11.7.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/flyway-core-11.7.2.jar
MD5: 4c980ae9d24be75b9522f8f4ed0b60bc
SHA1: 2e40f0465ab29c807a38aae56b4e636451a9ff99
SHA256:ff01fab3bcfd79e9345df191ecf82cbe1f9f65a757266158bd691564b1c1282c

Identifiers

  • pkg:maven/org.flywaydb/flyway-core@11.7.2  (Confidence:High)

ffl-core-database-3.1.2.jar: flyway-database-postgresql-11.7.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/flyway-database-postgresql-11.7.2.jar
MD5: 7f4b3e8a8ef177fa1d9e6815cdddfbac
SHA1: 6cca0e7f6fdded39ddc302c97d9e12ecc8c9b96a
SHA256:1d586e14ea772c75613df2c27ddc20f5c065e8a32283815338611af82e48f9a2

Identifiers

  • pkg:maven/org.flywaydb/flyway-database-postgresql@11.7.2  (Confidence:High)

ffl-core-database-3.1.2.jar: hibernate-commons-annotations-7.0.3.Final.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/hibernate-commons-annotations-7.0.3.Final.jar
MD5: 6698f99235fe6d36c42caaf2e6b52797
SHA1: e183c4be8bb41d12e9f19b374e00c34a0a85f439
SHA256:0db2fd57d5e43688ac6ed5cdf36deaf05d84340dcc24c2dd2a2114de38e5175d

Identifiers

  • None

ffl-core-database-3.1.2.jar: hibernate-core-6.6.9.Final.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/hibernate-core-6.6.9.Final.jar
MD5: 670b53c7af3752a2da8222bf10440121
SHA1: ebc13d6e7e5d7cf756bd4e1bc0caddc178d10422
SHA256:bfcd55203f0c8d2e42f58d8a21d1a94aeb592ccd05ea6f94f9b0feeb1b0d64ab

Identifiers

ffl-core-database-3.1.2.jar: istack-commons-runtime-4.1.2.jar

Description:

istack common utility code

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/istack-commons-runtime-4.1.2.jar
MD5: 535154ef647af2a52478c4debec93659
SHA1: 18ec117c85f3ba0ac65409136afa8e42bc74e739
SHA256:7fd6792361f4dd00f8c56af4a20cecc0066deea4a8f3dec38348af23fc2296ee

Identifiers

  • pkg:maven/com.sun.istack/istack-commons-runtime@4.1.2  (Confidence:High)

ffl-core-database-3.1.2.jar: jackson-annotations-2.21.jar

Description:

Core annotations used for value types, used by Jackson data binding package.

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jackson-annotations-2.21.jar
MD5: e0d0c3e7300954f73e43c67d933aaea4
SHA1: b1bc1868bf02dc0bd6c7836257a036a331005309
SHA256:53ca085f4a150f703f49e1aabd935bd03b43e1ea3d55d135438292af22cef56b

Identifiers

  • pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.21  (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-core:2.21:*:*:*:*:*:*:*  (Confidence:Highest)  
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.21:*:*:*:*:*:*:*  (Confidence:Low)  

ffl-core-database-3.1.2.jar: jackson-core-2.21.4.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jackson-core-2.21.4.jar
MD5: 2f3d2557bb48afa00fe924c9689ab3b6
SHA1: 56a503ba45016714394807ea89f95f5093760089
SHA256:4b40a06396f239f8de2da57419adde6e94e5edc18a2171d471ea05eeed4e5c2d

Identifiers

ffl-core-database-3.1.2.jar: jackson-databind-2.21.4.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jackson-databind-2.21.4.jar
MD5: 99769ad660a66c43caee5d539d19ed96
SHA1: 09e495680be707d466527d734368ebf36e464da2
SHA256:3888e9e69ab66fbacaacc9aea0e9ffbf15368288e4aca468b024dba11c09fbf9

Identifiers

CVE-2026-54515  

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.8.0 until 2.18.9, 2.21.5, and 3.1.4, in BeanDeserializerBase.createContextual(), per-property @JsonIgnoreProperties exclusions are applied by _handleByNameInclusion(), producing a contextual deserializer whose BeanPropertyMap has the ignored properties removed. The subsequent per-property case-insensitivity block (triggered by @JsonFormat(ACCEPT_CASE_INSENSITIVE_PROPERTIES)) rebuilds from this._beanProperties (the original, unfiltered map) instead of contextual._beanProperties, then overwrites the filtered map — restoring every property _handleByNameInclusion had just removed. The ignored property becomes writable again. This vulnerability is fixed in 2.18.9, 2.21.5, and 3.1.4.
CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes

CVSSv3:
  • Base Score: MEDIUM (5.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

ffl-core-database-3.1.2.jar: jackson-dataformat-toml-2.21.4.jar

Description:

Support for reading and writing TOML-encoded data via Jackson abstractions.

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jackson-dataformat-toml-2.21.4.jar
MD5: 691ba4fd665a8ba54c046c55b9aebecf
SHA1: 08a16502ac35d743e3ca0d2351174766e8be5b24
SHA256:c22e9f650a45d5697116e9beb85cb218792f03d19cf79134e692fe1a65f50cc6

Identifiers

ffl-core-database-3.1.2.jar: jackson-datatype-jsr310-2.21.4.jar

Description:

Add-on module to support JSR-310 (Java 8 Date & Time API) data types.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jackson-datatype-jsr310-2.21.4.jar
MD5: 8d64e799458e78f5d46765da252270fa
SHA1: 51f9ede30826b05cdf8a70b47bc68bd6271dfaaa
SHA256:d1ac4b98b70304e56448423589fde5e775b100889643ad1ead62cc7811633684

Identifiers

  • pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.21.4  (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.4:*:*:*:*:*:*:*  (Confidence:Low)  

ffl-core-database-3.1.2.jar: jakarta.activation-api-2.1.4.jar

Description:

  Specification

License:

EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jakarta.activation-api-2.1.4.jar
MD5: bc1602eee7bc61a0b86f14bbbb0cc794
SHA1: 9e5c2a0d75dde71a0bedc4dbdbe47b78a5dc50f8
SHA256:c9db52100ce6c8aac95cc39075f95720d2e561b11f8051b81c121ad4effd7004

Identifiers

  • pkg:maven/jakarta.activation/jakarta.activation-api@2.1.4  (Confidence:High)

ffl-core-database-3.1.2.jar: jakarta.inject-api-2.0.1.jar

Description:

Jakarta Dependency Injection

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256:f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c

Identifiers

  • pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1  (Confidence:High)

ffl-core-database-3.1.2.jar: jakarta.persistence-api-3.1.0.jar

Description:

Jakarta Persistence 3.1 API jar

License:

Eclipse Public License v. 2.0: http://www.eclipse.org/legal/epl-2.0
Eclipse Distribution License v. 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jakarta.persistence-api-3.1.0.jar
MD5: 35a1b7dfb38cf44ff795be607b0e6b5b
SHA1: 66901fa1c373c6aff65c13791cc11da72060a8d6
SHA256:475389446d35c6f46c565728b756dc508c284644ea2690644e0d8e7e339d42fd

Identifiers

  • pkg:maven/jakarta.persistence/jakarta.persistence-api@3.1.0  (Confidence:High)

ffl-core-database-3.1.2.jar: jakarta.transaction-api-2.0.1.jar

Description:

Jakarta Transactions

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jakarta.transaction-api-2.0.1.jar
MD5: 5315974a3935e342b40849478e1c9966
SHA1: 51a520e3fae406abb84e2e1148e6746ce3f80a1a
SHA256:50c0a7c760c13ae6c042acf182b28f0047413db95b4636fb8879bcffab5ba875

Identifiers

  • pkg:maven/jakarta.transaction/jakarta.transaction-api@2.0.1  (Confidence:High)
  • cpe:2.3:a:oracle:projects:2.0.1:*:*:*:*:*:*:*  (Confidence:Low)  

ffl-core-database-3.1.2.jar: jakarta.xml.bind-api-4.0.5.jar

Description:

Jakarta XML Binding API 4.0 Design Specification

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jakarta.xml.bind-api-4.0.5.jar
MD5: 935053b2c792f34c7ea3a238ea96f3ac
SHA1: 161811f36cad3c65991502e80317f2f6703361df
SHA256:5e489b6c874c4119e003ff1403db523ee3a8959ec499f3de29e77245efccf216

Identifiers

  • pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.5  (Confidence:High)

ffl-core-database-3.1.2.jar: jandex-3.2.0.jar

Description:

SmallRye Build Parent POM

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jandex-3.2.0.jar
MD5: 703254a1bd4c37efeebdc0a283c65565
SHA1: f17ad860f62a08487b9edabde608f8ac55c62fa7
SHA256:6da3e9ce8d0c0a433f3e7ce610a3c66accb00c71fee67aa0ff3e5a841395ac15

Identifiers

  • pkg:maven/io.smallrye/jandex@3.2.0  (Confidence:High)

ffl-core-database-3.1.2.jar: jaxb-core-4.0.9.jar

Description:

JAXB Core module. Contains sources required by XJC, JXC and Runtime modules.

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jaxb-core-4.0.9.jar
MD5: cfe79c0de53d009f9b171d1320f7879a
SHA1: 3f32ec949d109d666fa30994223d1c25a47b105f
SHA256:6b014df25d22c8446cc2df0a378c5b2137747f197a731d99eb24c756b26f7e8d

Identifiers

  • pkg:maven/org.glassfish.jaxb/jaxb-core@4.0.9  (Confidence:High)

ffl-core-database-3.1.2.jar: jaxb-runtime-4.0.9.jar

Description:

JAXB (JSR 222) Reference Implementation

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jaxb-runtime-4.0.9.jar
MD5: 5a09f7188a527773fc71f0ac8ca30652
SHA1: 500c199572538675d2819c938fbafe34935d8d6b
SHA256:93e09b7316b6af68d6e2083e4c297daf28e8957f45d725077af812c0b12c39ab

Identifiers

  • pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.9  (Confidence:High)

ffl-core-database-3.1.2.jar: jboss-logging-3.6.3.Final.jar

Description:

The JBoss Logging Framework

License:

Apache License 2.0: https://repository.jboss.org/licenses/apache-2.0.txt
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/jboss-logging-3.6.3.Final.jar
MD5: b4cf5872f18b3e80e18769d51c7ae9b2
SHA1: 1cc9f976725720bb4a66f80af3e3aa6b9890d969
SHA256:7c12ee575508f81e22b1db9334b969d0ec54ef0fd1dcba24eeab1a44235fc366

Identifiers

  • pkg:maven/org.jboss.logging/jboss-logging@3.6.3.Final  (Confidence:High)

ffl-core-database-3.1.2.jar: postgresql-42.7.11.jar

Description:

Java JDBC driver for PostgreSQL database

License:

BSD-2-Clause
File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/postgresql-42.7.11.jar
MD5: b969f87f07d6434bd77cdc5e440da49a
SHA1: 4c21cdd1b3938f400703716d37c4e8ca4d332808
SHA256:1981b31d3993c58702783c1cddf10a34e48c1f413d70ff1cb6def0a143484647

Identifiers

ffl-core-database-3.1.2.jar: spring-tx-6.2.19.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/spring-tx-6.2.19.jar
MD5: 0a3ba16888dc23fdd52ba7b36bc01835
SHA1: 0aa1a170d935a3c39176d27a2353c34c2861b7dc
SHA256:34a1b6f5d87ef4cca6849e1bc70a0f965eec6476737b3cae73ff2561a266ef73

Identifiers

ffl-core-database-3.1.2.jar: txw2-4.0.9.jar

Description:

        TXW is a library that allows you to write XML documents.

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-database/target/ffl-core-database-3.1.2.jar/BOOT-INF/lib/txw2-4.0.9.jar
MD5: 09ca7799e2d1a5b484e1290db7bb9344
SHA1: 70325ebdebca3e7aae1dfa395fd41fc25d8a6f4e
SHA256:d6343e5945d87266ca4e8974a0a2a876e1bd147a00fb65ed3f2e1a3a00f3a82a

Identifiers

  • pkg:maven/org.glassfish.jaxb/txw2@4.0.9  (Confidence:High)

ffl-core-services-3.1.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-services/target/ffl-core-services-3.1.2.jar
MD5: 3caf2052bb5247e1760db46a40f6263f
SHA1: 5dea62b046a57b41e738d7853f3ba40f6084700e
SHA256:93184fe8dc8fce3bda2a4881ff4cff76eb03b8af4b29ea691c8e19058193c922

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-services@3.1.2  (Confidence:High)

ffl-core-sia-3.1.2.jar

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-sia/target/ffl-core-sia-3.1.2.jar
MD5: f7eea74e51aeb31ff9c5e51560940e8f
SHA1: 6afe94f8eb816c205cc648461cadaeec64a96261
SHA256:e90631c1b88b3162c19fc2fa8fb409504a96681e3a39f4e69f5d958513ee9d9c

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-core-sia@3.1.2  (Confidence:High)

ffl-test-3.1.2.jar

Description:

Module d'outillage de test

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-test/target/ffl-test-3.1.2.jar
MD5: 3640757de9317a508e03edaf743bf4f0
SHA1: 01f8c9c08e497dad895d66f7eeb111727dc0457f
SHA256:d4c2ad41ff3c86860dcdb3aaa034333696f84c39060185a6d5ab431e017d7124

Identifiers

  • pkg:maven/com.sintia.ffl.core/ffl-test@3.1.2  (Confidence:High)

prettify.js

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-api/target/site/jacoco/jacoco-resources/prettify.js
MD5: 4b337aaa3c606cfc1a6ff1986db2c8cb
SHA1: 290093755739da933c180ae7e7ebf283724dad1d
SHA256:743c6c4cab9499cd0bfe18a5a62281eccce843f47ec75eedb32eeb29c755aa68

Identifiers

  • None

sort.js

File Path: /home/azureuser/dependency-check/projects/ffl-core/ffl-core/ffl-core-api/target/site/jacoco/jacoco-resources/sort.js
MD5: af6dc76a8d5e0653f66eb57f2757327d
SHA1: 03380a84c61514f773a503de39d517e1bb2d72bb
SHA256:64407e72c5097000e41f9da4ac9a04131b8ec9479ca8987a5f5d5f2ad6383043

Identifiers

  • None


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.