generator-jhipster allows a timing attack against validateToken due to a string comparison that stops at the first character
High severity
GitHub Reviewed
Published
Oct 31, 2023
to the GitHub Advisory Database
•
Updated Nov 17, 2023
Give feedback on Dependabot alerts