Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: google group | github issues

Project: Sass Compiler Plugin

nl.geodienstencentrum.maven:sass-maven-plugin:3.7.3-SNAPSHOT

Scan Information (show all):

Display: Showing Vulnerable Dependencies (click to show all)

DependencyCPECoordinatesHighest SeverityCVE CountCPE ConfidenceEvidence Count
maven-core-3.6.0.jarcpe:/a:apache:maven:3.6.0org.apache.maven:maven-core:3.6.0 0Low22
maven-model-3.6.0.jarorg.apache.maven:maven-model:3.6.0 022
maven-settings-3.6.0.jarorg.apache.maven:maven-settings:3.6.0 022
maven-settings-builder-3.6.0.jarorg.apache.maven:maven-settings-builder:3.6.0 022
plexus-sec-dispatcher-1.4.jarorg.sonatype.plexus:plexus-sec-dispatcher:1.4 022
plexus-cipher-1.4.jarorg.sonatype.plexus:plexus-cipher:1.4 022
maven-builder-support-3.6.0.jarorg.apache.maven:maven-builder-support:3.6.0 022
maven-repository-metadata-3.6.0.jarorg.apache.maven:maven-repository-metadata:3.6.0 022
maven-artifact-3.6.0.jarorg.apache.maven:maven-artifact:3.6.0 020
maven-plugin-api-3.6.0.jarorg.apache.maven:maven-plugin-api:3.6.0 022
maven-model-builder-3.6.0.jarorg.apache.maven:maven-model-builder:3.6.0 022
maven-resolver-provider-3.6.0.jarorg.apache.maven:maven-resolver-provider:3.6.0 022
slf4j-api-1.7.25.jarorg.slf4j:slf4j-api:1.7.25 025
maven-resolver-impl-1.3.1.jarorg.apache.maven.resolver:maven-resolver-impl:1.3.1 033
maven-resolver-api-1.3.1.jarorg.apache.maven.resolver:maven-resolver-api:1.3.1 033
maven-resolver-spi-1.3.1.jarorg.apache.maven.resolver:maven-resolver-spi:1.3.1 033
maven-resolver-util-1.3.1.jarorg.apache.maven.resolver:maven-resolver-util:1.3.1 033
maven-shared-utils-3.2.1.jarorg.apache.maven.shared:maven-shared-utils:3.2.1 022
org.eclipse.sisu.plexus-0.3.3.jarorg.eclipse.sisu:org.eclipse.sisu.plexus:0.3.3 019
cdi-api-1.0.jarjavax.enterprise:cdi-api:1.0 023
jsr250-api-1.0.jarjavax.annotation:jsr250-api:1.0 017
org.eclipse.sisu.inject-0.3.3.jarorg.eclipse.sisu:org.eclipse.sisu.inject:0.3.3 019
guice-4.2.1-no_aop.jarcom.google.inject:guice:4.2.1 026
aopalliance-1.0.jaraopalliance:aopalliance:1.0 017
guava-25.1-android.jarcpe:/a:google:guava:25.1com.google.guava:guava:25.1-android 0Low25
jsr305-3.0.2.jarcom.google.code.findbugs:jsr305:3.0.2 019
checker-compat-qual-2.0.0.jarorg.checkerframework:checker-compat-qual:2.0.0 017
error_prone_annotations-2.1.3.jarcom.google.errorprone:error_prone_annotations:2.1.3 017
j2objc-annotations-1.1.jarcom.google.j2objc:j2objc-annotations:1.1 019
animal-sniffer-annotations-1.14.jarorg.codehaus.mojo:animal-sniffer-annotations:1.14 018
javax.inject-1.jarjavax.inject:javax.inject:1 017
plexus-utils-3.1.0.jarorg.codehaus.plexus:plexus-utils:3.1.0 019
plexus-classworlds-2.5.2.jarorg.codehaus.plexus:plexus-classworlds:2.5.2 021
plexus-component-annotations-1.7.1.jarorg.codehaus.plexus:plexus-component-annotations:1.7.1 020
commons-lang3-3.8.1.jarorg.apache.commons:commons-lang3:3.8.1 035
maven-plugin-annotations-3.6.0.jarorg.apache.maven.plugin-tools:maven-plugin-annotations:3.6.0 022
jruby-complete-9.2.7.0.jarcpe:/a:jruby:jruby:9.2.7.0org.jruby:jruby-complete:9.2.7.0Medium1Low16
commons-io-2.6.jarcommons-io:commons-io:2.6 037
plexus-container-default-1.0-alpha-9-stable-1.jarorg.codehaus.plexus:plexus-container-default:1.0-alpha-9-stable-1 019
classworlds-1.1-alpha-2.jarclassworlds:classworlds:1.1-alpha-2 022
plexus-interpolation-1.25.jarorg.codehaus.plexus:plexus-interpolation:1.25 021
doxia-sink-api-1.8.jarorg.apache.maven.doxia:doxia-sink-api:1.8 022
doxia-logging-api-1.8.jarorg.apache.maven.doxia:doxia-logging-api:1.8 022
maven-reporting-impl-3.0.0.jarorg.apache.maven.reporting:maven-reporting-impl:3.0.0 024
maven-reporting-api-3.0.jarorg.apache.maven.reporting:maven-reporting-api:3.0 022
doxia-decoration-model-1.7.4.jarorg.apache.maven.doxia:doxia-decoration-model:1.7.4 022
doxia-core-1.7.jarorg.apache.maven.doxia:doxia-core:1.7 020
commons-lang-2.4.jarcommons-lang:commons-lang:2.4 031
httpclient-4.0.2.jarcpe:/a:apache:httpclient:4.0.2org.apache.httpcomponents:httpclient:4.0.2 0Low24
commons-logging-1.1.1.jarcommons-logging:commons-logging:1.1.1 026
commons-codec-1.3.jarcommons-codec:commons-codec:1.3 025
httpcore-4.0.1.jarorg.apache.httpcomponents:httpcore:4.0.1 021
xmlunit-1.5.jarxmlunit:xmlunit:1.5 017
doxia-site-renderer-1.7.4.jarorg.apache.maven.doxia:doxia-site-renderer:1.7.4 022
doxia-skin-model-1.7.4.jarorg.apache.maven.doxia:doxia-skin-model:1.7.4 022
doxia-module-xhtml-1.7.jarorg.apache.maven.doxia:doxia-module-xhtml:1.7 020
plexus-i18n-1.0-beta-7.jarorg.codehaus.plexus:plexus-i18n:1.0-beta-7 019
plexus-velocity-1.2.jarorg.codehaus.plexus:plexus-velocity:1.2 017
velocity-1.7.jarorg.apache.velocity:velocity:1.7 029
velocity-tools-2.0.jarorg.apache.velocity:velocity-tools:2.0 026
commons-beanutils-1.7.0.jarcpe:/a:apache:commons_beanutils:1.7.0commons-beanutils:commons-beanutils:1.7.0High1Low14
commons-digester-1.8.jarcommons-digester:commons-digester:1.8 026
commons-chain-1.1.jarcommons-chain:commons-chain:1.1 026
commons-validator-1.3.1.jarcommons-validator:commons-validator:1.3.1 026
dom4j-1.1.jarcpe:/a:dom4j_project:dom4j:1.1dom4j:dom4j:1.1 0Low14
oro-2.0.8.jaroro:oro:2.0.8 011
sslext-1.2-0.jarsslext:sslext:1.2-0 017
struts-core-1.3.8.jarcpe:/a:apache:struts:1.3.8org.apache.struts:struts-core:1.3.8High4Highest20
antlr-2.7.2.jarantlr:antlr:2.7.2 09
struts-tiles-1.3.8.jarcpe:/a:apache:struts:1.3.8
cpe:/a:apache:tiles:1.3.8		org.apache.struts:struts-tiles:1.3.8High4Highest20
commons-collections-3.2.1.jarcpe:/a:apache:commons_collections:3.2.1commons-collections:commons-collections:3.2.1High2Highest31
jruby-complete-9.2.7.0.jar: jruby.dll 02
jruby-complete-9.2.7.0.jar: jruby.exe 02
jruby-complete-9.2.7.0.jar: jrubyw.exe 02
jruby-complete-9.2.7.0.jar: jline-2.14.6.jarjline:jline:2.14.6 015
jruby-complete-9.2.7.0.jar: jopenssl.jarcpe:/a:jruby:jruby:0.10.2rubygems:jruby-openssl:0.10.2High3Low18
jruby-complete-9.2.7.0.jar: generator.jar 05
jruby-complete-9.2.7.0.jar: parser.jar 05
jruby-complete-9.2.7.0.jar: bcpkix-jdk15on-1.61.jar 029
jruby-complete-9.2.7.0.jar: bcprov-jdk15on-1.61.jarcpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.61 0Low30
jruby-complete-9.2.7.0.jar: bctls-jdk15on-1.61.jar 031
jruby-complete-9.2.7.0.jar: snakeyaml-1.23.jarorg.yaml:snakeyaml:1.23 021
jruby-complete-9.2.7.0.jar: psych.jar 07
jruby-complete-9.2.7.0.jar: cparse-jruby.jar 05
jruby-complete-9.2.7.0.jar: readline.jarcpe:/a:jruby:jruby:1.3.7rubygems:jruby-readline:1.3.7High3Low18
jruby-complete-9.2.7.0.jar: jffi-1.2.dll 04
jruby-complete-9.2.7.0.jar: jffi-1.2.dll 04
jruby-complete-9.2.7.0.jar: jline-2.14.6.jar: jansi.dll 02
jruby-complete-9.2.7.0.jar: jline-2.14.6.jar: jansi.dll 02
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jffi:1.2.18)cpe:/a:github:github:1.2.18com.github.jnr:jffi:1.2.18 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-constants:0.9.12)cpe:/a:github:github:0.9.12com.github.jnr:jnr-constants:0.9.12 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-enxio:0.19)cpe:/a:github:github:0.19com.github.jnr:jnr-enxio:0.19 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-ffi:2.1.9)cpe:/a:github:github:2.1.9com.github.jnr:jnr-ffi:2.1.9 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-netdb:1.1.6)cpe:/a:github:github:1.1.6com.github.jnr:jnr-netdb:1.1.6 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-posix:3.0.49)com.github.jnr:jnr-posix:3.0.49 09
jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-unixsocket:0.20)cpe:/a:github:github:0.20com.github.jnr:jnr-unixsocket:0.20 0Low11
jruby-complete-9.2.7.0.jar (shaded: com.headius:backport9:1.2)com.headius:backport9:1.2 05
jruby-complete-9.2.7.0.jar (shaded: com.headius:invokebinder:1.11)com.headius:invokebinder:1.11 09
jruby-complete-9.2.7.0.jar (shaded: com.headius:options:1.4)com.headius:options:1.4 09
jruby-complete-9.2.7.0.jar (shaded: com.jcraft:jzlib:1.1.3)cpe:/a:jcraft:jzlib:1.1.3com.jcraft:jzlib:1.1.3 0Low15
jruby-complete-9.2.7.0.jar (shaded: com.martiansoftware:nailgun-server:0.9.1)com.martiansoftware:nailgun-server:0.9.1 013
jruby-complete-9.2.7.0.jar (shaded: joda-time:joda-time:2.9.9)joda-time:joda-time:2.9.9 015
jruby-complete-9.2.7.0.jar (shaded: me.qmx.jitescript:jitescript:0.4.1)me.qmx.jitescript:jitescript:0.4.1 011
jruby-complete-9.2.7.0.jar (shaded: org.jruby.jcodings:jcodings:1.0.43)org.jruby.jcodings:jcodings:1.0.43 09
jruby-complete-9.2.7.0.jar (shaded: org.jruby.joni:joni:2.1.26)cpe:/a:oniguruma_project:oniguruma:2.1.26org.jruby.joni:joni:2.1.26 0Low9

Dependencies

maven-core-3.6.0.jar

Description:

 Maven Core classes.

File Path: /var/m2/repository/org/apache/maven/maven-core/3.6.0/maven-core-3.6.0.jar
MD5: b30d78c6a37ca6c18f730fe15b006bc6
SHA1: f455f85cfa58962efd1dc63c7bcc0e034cd07594
SHA256:c7611780b8456e2b29284b8c0d37cdd5358facdc1091d64ab46a2feddd2cb6ae
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-core:3.6.0  Confidence:Highest
  • cpe: cpe:/a:apache:maven:3.6.0  Confidence:Low  

maven-model-3.6.0.jar

Description:

 Model for Maven POM (Project Object Model)

File Path: /var/m2/repository/org/apache/maven/maven-model/3.6.0/maven-model-3.6.0.jar
MD5: 0505d964b102e3f62845f5d4508e166e
SHA1: 06d73e6218a10cfe82cf0325b582cbed732cc751
SHA256:a1bf0c7856afd1f1b9c81c22818328fb7a796b4047010e08f2e859d1896080a9
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-model:3.6.0  Confidence:Highest

maven-settings-3.6.0.jar

Description:

 Maven Settings model.

File Path: /var/m2/repository/org/apache/maven/maven-settings/3.6.0/maven-settings-3.6.0.jar
MD5: 50363a2c3d89ed965274f1a1bfeb44d2
SHA1: c54a81d238ccdd58f7aeed785e29ac8f3a42fa21
SHA256:053655dc2890f119cb13ddb90b1888b9cfcf1cea3a374c0656d53595b4f37542
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-settings:3.6.0  Confidence:Highest

maven-settings-builder-3.6.0.jar

Description:

 The effective settings builder, with inheritance and password decryption.

File Path: /var/m2/repository/org/apache/maven/maven-settings-builder/3.6.0/maven-settings-builder-3.6.0.jar
MD5: 20402aee281aee1e54c9cfdcb4676ca9
SHA1: 5b889fc4eb0d322af9a4366c69507d1d5d51a2b8
SHA256:271a82555c399d9b06c7751a802c3b919081a06b7c9b839bd70e93ea2df386e3
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-settings-builder:3.6.0  Confidence:Highest

plexus-sec-dispatcher-1.4.jar

File Path: /var/m2/repository/org/sonatype/plexus/plexus-sec-dispatcher/1.4/plexus-sec-dispatcher-1.4.jar
MD5: 0a46e5bc9bc2fbd3b68091066aff2737
SHA1: 43fde524e9b94c883727a9fddb8669181b890ea7
SHA256:da73e32b58132e64daf12269fd9d011c0b303f234840f179908725a632b6b57c
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.sonatype.plexus:plexus-sec-dispatcher:1.4  Confidence:Highest

plexus-cipher-1.4.jar

File Path: /var/m2/repository/org/sonatype/plexus/plexus-cipher/1.4/plexus-cipher-1.4.jar
MD5: 7b2d6fcf0d5800d5b1ce09d98d98dcaf
SHA1: 50ade46f23bb38cd984b4ec560c46223432aac38
SHA256:5a15fdba22669e0fdd06e10dcce6320879e1f7398fbc910cd0677b50672a78c4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.sonatype.plexus:plexus-cipher:1.4  Confidence:Highest

maven-builder-support-3.6.0.jar

Description:

 Support for descriptor builders (model, setting, toolchains)

File Path: /var/m2/repository/org/apache/maven/maven-builder-support/3.6.0/maven-builder-support-3.6.0.jar
MD5: ceaaf193c5554f51c32094fe72cbbe48
SHA1: 91247204af8e1b256f3d644f736a8acad76794e5
SHA256:56affafea9c76168bbc5b8ee9d26dd2dbe95b8185b70d6b2a46dd9fc39d0dd53
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-builder-support:3.6.0  Confidence:Highest

maven-repository-metadata-3.6.0.jar

Description:

 Per-directory local and remote repository metadata.

File Path: /var/m2/repository/org/apache/maven/maven-repository-metadata/3.6.0/maven-repository-metadata-3.6.0.jar
MD5: 1c25f4d36c94ff76de0c4227e08cb84a
SHA1: ab6576d2d7d02c20d8dadb2fdf8571991a47bd0a
SHA256:21702a5beccf3731ecdd6ed87f8fd0ae2bb7856b12fe91585b5513840722b0c3
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-repository-metadata:3.6.0  Confidence:Highest

maven-artifact-3.6.0.jar

File Path: /var/m2/repository/org/apache/maven/maven-artifact/3.6.0/maven-artifact-3.6.0.jar
MD5: 89e95013b11f347e48c0525965600404
SHA1: d4c0da647de59c9ccc304a112fe1f1474d49e8eb
SHA256:3d5a0e77cde76d386b18c7400db1eb16aacef02e031ecd0d954477aeccc92155
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-artifact:3.6.0  Confidence:Highest

maven-plugin-api-3.6.0.jar

Description:

 The API for plugins - Mojos - development.

File Path: /var/m2/repository/org/apache/maven/maven-plugin-api/3.6.0/maven-plugin-api-3.6.0.jar
MD5: 416f41e165e638af2daa5d009af35946
SHA1: 1ad37c33e3f046a84e7394df36a05a7f3b877d55
SHA256:0062a08b463314a1b5f8eb1a56207efb830fbdf547c42a3191eb146c4db39b1a
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-plugin-api:3.6.0  Confidence:Highest

maven-model-builder-3.6.0.jar

Description:

 The effective model builder, with inheritance, profile activation, interpolation, ...

File Path: /var/m2/repository/org/apache/maven/maven-model-builder/3.6.0/maven-model-builder-3.6.0.jar
MD5: 42ea36dc9f24d0b1da95eaf62ff1a0ce
SHA1: c9a8b1367163af0ed8887e8422f361b66e67a6d5
SHA256:a7295f062b54d0cbd513ffbb6d21c9bc9e21d9904547f299831236a988e50ab3
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-model-builder:3.6.0  Confidence:Highest

maven-resolver-provider-3.6.0.jar

Description:

 Extensions to Maven Resolver for utilizing Maven POM and repository metadata.

File Path: /var/m2/repository/org/apache/maven/maven-resolver-provider/3.6.0/maven-resolver-provider-3.6.0.jar
MD5: 040541e95a80214e19c66657da8b7205
SHA1: feacf8ad983e794952562febef0a4962eec1c22e
SHA256:3e7d265ef4e9ade0f5de998961c6cac634cbf3fbdb839bb50a3a50b2ffbba7f8
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven:maven-resolver-provider:3.6.0  Confidence:Highest

slf4j-api-1.7.25.jar

Description:

 The slf4j API

File Path: /var/m2/repository/org/slf4j/slf4j-api/1.7.25/slf4j-api-1.7.25.jar
MD5: caafe376afb7086dcbee79f780394ca3
SHA1: da76ca59f6a57ee3102f8f9bd9cee742973efa8a
SHA256:18c4a0095d5c1da6b817592e767bb23d29dd2f560ad74df75ff3961dbde25b79
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.slf4j:slf4j-api:1.7.25  Confidence:Highest

maven-resolver-impl-1.3.1.jar

Description:

 
    An implementation of the repository system.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/maven/resolver/maven-resolver-impl/1.3.1/maven-resolver-impl-1.3.1.jar
MD5: 5d0ad2029c76f474429af0e965535181
SHA1: 200e0386412e9317f9be5e3c00a18eda673e6f6d
SHA256:aaa41b53ed4fcc13b3d719d85f45b0fba21ee026dd4b625dd82210a28ee8e2fe
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.resolver:maven-resolver-impl:1.3.1  Confidence:Highest

maven-resolver-api-1.3.1.jar

Description:

 
    The application programming interface for the repository system.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/maven/resolver/maven-resolver-api/1.3.1/maven-resolver-api-1.3.1.jar
MD5: 4a58399aad0f803f823267f9450a5782
SHA1: 4a8cb0bf19651f6869353609065bb893bb033ef6
SHA256:6be437d670dffa24bac4187bc1567c34fab04fc569836f8b45b9d79cbfd493ea
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.resolver:maven-resolver-api:1.3.1  Confidence:Highest

maven-resolver-spi-1.3.1.jar

Description:

 
    The service provider interface for repository system implementations and repository connectors.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/maven/resolver/maven-resolver-spi/1.3.1/maven-resolver-spi-1.3.1.jar
MD5: 37f9fc8698b2c023f50258280c1aeefc
SHA1: 7780f1f8ce061c3c8131d5cd91ad04e52c887091
SHA256:d4d15a6d473d78608412818c091b3c01d37bdf4f0e453156a19724af843a03ea
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.resolver:maven-resolver-spi:1.3.1  Confidence:Highest

maven-resolver-util-1.3.1.jar

Description:

 
    A collection of utility classes to ease usage of the repository system.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/maven/resolver/maven-resolver-util/1.3.1/maven-resolver-util-1.3.1.jar
MD5: 39a6a7632de69d5fd2e5810d5d7cf92e
SHA1: caf7691a5a0373e948bbb00b23b52ef4cbceee71
SHA256:a7c2d81cd7d6df38e2997bf09507e0bca6fa85dfb635de4bf28a7c501cb574f4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.resolver:maven-resolver-util:1.3.1  Confidence:Highest

maven-shared-utils-3.2.1.jar

Description:

 Shared utils without any further dependencies

File Path: /var/m2/repository/org/apache/maven/shared/maven-shared-utils/3.2.1/maven-shared-utils-3.2.1.jar
MD5: 9c8c48e58b12b4584278c355f6c98bd5
SHA1: 08dd4dfb1d2d8b6969f6462790f82670bcd35ce2
SHA256:3ba9c619893c767db0f9c3e826d5118b57c35229301bcd16d865a89cec16a7e5
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.shared:maven-shared-utils:3.2.1  Confidence:Highest

org.eclipse.sisu.plexus-0.3.3.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: /var/m2/repository/org/eclipse/sisu/org.eclipse.sisu.plexus/0.3.3/org.eclipse.sisu.plexus-0.3.3.jar
MD5: 02eeaf9f89f7249f9f7bbab2771f5ef5
SHA1: 2c892c1fe0cd2dabcc729e1cbff3524b4847b1fe
SHA256:98045f5ecd802d6a96ba00394f8cb61259f9ac781ec2cb51ca0cb7b2c94ac720
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.eclipse.sisu:org.eclipse.sisu.plexus:0.3.3  Confidence:Highest

cdi-api-1.0.jar

Description:

 APIs for JSR-299: Contexts and Dependency Injection for Java EE

File Path: /var/m2/repository/javax/enterprise/cdi-api/1.0/cdi-api-1.0.jar
MD5: 462c0959f0322016495f4598243bc0f2
SHA1: 44c453f60909dfc223552ace63e05c694215156b
SHA256:1f10b2204cc77c919301f20ff90461c3df1b6e6cb148be1c2d22107f4851d423
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: javax.enterprise:cdi-api:1.0  Confidence:Highest

jsr250-api-1.0.jar

Description:

 JSR-250 Reference Implementation by Glassfish

License:

COMMON DEVELOPMENT AND DISTRIBUTION LICENSE (CDDL) Version 1.0: https://glassfish.dev.java.net/public/CDDLv1.0.html
File Path: /var/m2/repository/javax/annotation/jsr250-api/1.0/jsr250-api-1.0.jar
MD5: 4cd56b2e4977e541186de69f5126b4a6
SHA1: 5025422767732a1ab45d93abfea846513d742dcf
SHA256:a1a922d0d9b6d183ed3800dfac01d1e1eb159f0e8c6f94736931c1def54a941f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: javax.annotation:jsr250-api:1.0  Confidence:Highest

org.eclipse.sisu.inject-0.3.3.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: /var/m2/repository/org/eclipse/sisu/org.eclipse.sisu.inject/0.3.3/org.eclipse.sisu.inject-0.3.3.jar
MD5: 47ff59586827a2e705183c678e70404f
SHA1: b163fc1e714db5f9b389ec11f11950b5913e454c
SHA256:c6935e0b7d362ed4ca768c9b71d5d4d98788ff0a79c0d2bb954c221a078b166b
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.eclipse.sisu:org.eclipse.sisu.inject:0.3.3  Confidence:Highest

guice-4.2.1-no_aop.jar

Description:

 Guice is a lightweight dependency injection framework for Java 6 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/com/google/inject/guice/4.2.1/guice-4.2.1-no_aop.jar
MD5: 57c18dbf01a6ef7fa4da3fb594cd243e
SHA1: 41e5ab52ec65e60b6c0ced947becf7ba96402645
SHA256:158fd8f52d2a4b4ce4293ac2b833bb2427f5ddfe30df4ae0fd4675a1038a3b79
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.google.inject:guice:4.2.1  Confidence:Highest

aopalliance-1.0.jar

Description:

 AOP Alliance

License:

Public Domain
File Path: /var/m2/repository/aopalliance/aopalliance/1.0/aopalliance-1.0.jar
MD5: 04177054e180d09e3998808efa0401c7
SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8
SHA256:0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: aopalliance:aopalliance:1.0  Confidence:Highest

guava-25.1-android.jar

Description:

 
    Guava is a suite of core and expanded libraries that include
    utility classes, google's collections, io classes, and much
    much more.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/com/google/guava/guava/25.1-android/guava-25.1-android.jar
MD5: b506eaec680c6d92d5f063fa1d57956d
SHA1: bdaab946ca5ad20253502d873ba0c3313d141036
SHA256:f7b8f8fed176b9cf6831b98cb07320d7fbe91d99b29999f752c3821dfe45bdc8
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.google.guava:guava:25.1-android  Confidence:Highest
  • cpe: cpe:/a:google:guava:25.1  Confidence:Low  

jsr305-3.0.2.jar

Description:

 JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.google.code.findbugs:jsr305:3.0.2  Confidence:Highest

checker-compat-qual-2.0.0.jar

Description:

 
        Checker Qual is the set of annotations (qualifiers) and supporting classes
        used by the Checker Framework to type check Java source code.  Please
        see artifact:
        org.checkerframework:checker

License:

GNU General Public License, version 2 (GPL2), with the classpath exception: http://www.gnu.org/software/classpath/license.html
The MIT License: http://opensource.org/licenses/MIT
File Path: /var/m2/repository/org/checkerframework/checker-compat-qual/2.0.0/checker-compat-qual-2.0.0.jar
MD5: b6fb2610dacd211a3e2c3d8af1b60d0f
SHA1: fc89b03860d11d6213d0154a62bcd1c2f69b9efa
SHA256:a40b2ce6d8551e5b90b1bf637064303f32944d61b52ab2014e38699df573941b
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.checkerframework:checker-compat-qual:2.0.0  Confidence:Highest

error_prone_annotations-2.1.3.jar

License:

Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/com/google/errorprone/error_prone_annotations/2.1.3/error_prone_annotations-2.1.3.jar
MD5: 97504b36cf871722d81a4b9e114f2a16
SHA1: 39b109f2cd352b2d71b52a3b5a1a9850e1dc304b
SHA256:03d0329547c13da9e17c634d1049ea2ead093925e290567e1a364fd6b1fc7ff8
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.google.errorprone:error_prone_annotations:2.1.3  Confidence:Highest

j2objc-annotations-1.1.jar

Description:

 
    A set of annotations that provide additional information to the J2ObjC
    translator to modify the result of translation.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/com/google/j2objc/j2objc-annotations/1.1/j2objc-annotations-1.1.jar
MD5: 49ae3204bb0bb9b2ac77062641f4a6d7
SHA1: ed28ded51a8b1c6b112568def5f4b455e6809019
SHA256:2994a7eb78f2710bd3d3bfb639b2c94e219cedac0d4d084d516e78c16dddecf6
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.google.j2objc:j2objc-annotations:1.1  Confidence:Highest

animal-sniffer-annotations-1.14.jar

File Path: /var/m2/repository/org/codehaus/mojo/animal-sniffer-annotations/1.14/animal-sniffer-annotations-1.14.jar
MD5: 9d42e46845c874f1710a9f6a741f6c14
SHA1: 775b7e22fb10026eed3f86e8dc556dfafe35f2d5
SHA256:2068320bd6bad744c3673ab048f67e30bef8f518996fa380033556600669905d
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.mojo:animal-sniffer-annotations:1.14  Confidence:Highest

javax.inject-1.jar

Description:

 The javax.inject API

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/javax/inject/javax.inject/1/javax.inject-1.jar
MD5: 289075e48b909e9e74e6c915b3631d2e
SHA1: 6975da39a7040257bd51d21a231b76c915872d38
SHA256:91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ff
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: javax.inject:javax.inject:1  Confidence:Highest

plexus-utils-3.1.0.jar

Description:

 A collection of various utility classes to ease working with strings, files, command lines, XML and
    more.

File Path: /var/m2/repository/org/codehaus/plexus/plexus-utils/3.1.0/plexus-utils-3.1.0.jar
MD5: bfec331a62402081dd4143e3a8d193e4
SHA1: 60eecb6f15abdb1c653ad80abaac6fe188b3feaa
SHA256:0ffa0ad084ebff5712540a7b7ea0abda487c53d3a18f78c98d1a3675dab9bf61
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-utils:3.1.0  Confidence:Highest

plexus-classworlds-2.5.2.jar

Description:

 A class loader framework

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/codehaus/plexus/plexus-classworlds/2.5.2/plexus-classworlds-2.5.2.jar
MD5: 53b54feee8cef6b843bd6748bda4bfa7
SHA1: 4abb111bfdace5b8167db4c0ef74644f3f88f142
SHA256:b2931d41740490a8d931cbe0cfe9ac20deb66cca606e679f52522f7f534c9fd7
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-classworlds:2.5.2  Confidence:Highest

plexus-component-annotations-1.7.1.jar

Description:

 
    Plexus Component "Java 5" Annotations, to describe plexus components properties in java sources with
    standard annotations instead of javadoc annotations.

File Path: /var/m2/repository/org/codehaus/plexus/plexus-component-annotations/1.7.1/plexus-component-annotations-1.7.1.jar
MD5: 8674737da39fb173a2f290c6798e7cc9
SHA1: 862abca6deff0fff241a835a33d22559e9132069
SHA256:a7fee9435db716bff593e9fb5622bcf9f25e527196485929b0cd4065c43e61df
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-component-annotations:1.7.1  Confidence:Highest

commons-lang3-3.8.1.jar

Description:

 
  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/commons/commons-lang3/3.8.1/commons-lang3-3.8.1.jar
MD5: 540b1256d887a6993ecbef23371a3302
SHA1: 6505a72a097d9270f7a9e7bf42c4238283247755
SHA256:dac807f65b07698ff39b1b07bfef3d87ae3fd46d91bbf8a2bc02b2a831616f68
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.commons:commons-lang3:3.8.1  Confidence:Highest

maven-plugin-annotations-3.6.0.jar

Description:

 Java annotations to use in Mojos

File Path: /var/m2/repository/org/apache/maven/plugin-tools/maven-plugin-annotations/3.6.0/maven-plugin-annotations-3.6.0.jar
MD5: c26580fde2323b86d67de4ec22baf2ae
SHA1: e3ce624bc4af77c9dbe2d609851c4082a4da7bc4
SHA256:9e2434820dd2ba44ad70a66e5b2a9993a2a8b047ceabc3e850e4858cbf3f91c3
Referenced In Project/Scope:Sass Compiler Plugin:provided

Identifiers

  • maven: org.apache.maven.plugin-tools:maven-plugin-annotations:3.6.0  Confidence:Highest

jruby-complete-9.2.7.0.jar

Description:

 JRuby 9.2.7.0 OSGi bundle

License:

http://www.gnu.org/licenses/gpl-2.0-standalone.html, http://www.gnu.org/licenses/lgpl-2.1-standalone.html, http://www.eclipse.org/legal/epl-v20.html
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar
MD5: 923069f2e71a044fc62f478d013adce4
SHA1: 308120bca38f617e7b275af8ce0cbd9f0be66218
SHA256:a43125f921e707eef861713028d79f60d2f4b024ea6af71a992395ee9e697c22
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:jruby:jruby:9.2.7.0  Confidence:Low  
  • maven: org.jruby:jruby-complete:9.2.7.0  Confidence:Highest

CVE-2012-5370  

Severity:Medium
CVSS Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
CWE: CWE-310 Cryptographic Issues 

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4838.

Vulnerable Software & Versions:

commons-io-2.6.jar

Description:

 
The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/commons-io/commons-io/2.6/commons-io-2.6.jar
MD5: 467c2a1f64319c99b5faf03fc78572af
SHA1: 815893df5f31da2ece4040fe0a12fd44b577afaf
SHA256:f877d304660ac2a142f3865badfc971dec7ed73c747c7f8d5d2f5139ca736513
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-io:commons-io:2.6  Confidence:Highest

plexus-container-default-1.0-alpha-9-stable-1.jar

File Path: /var/m2/repository/org/codehaus/plexus/plexus-container-default/1.0-alpha-9-stable-1/plexus-container-default-1.0-alpha-9-stable-1.jar
MD5: 99533a9d3e0fa3280cd0bd3426c5f99b
SHA1: 94aea3010e250a334d9dab7f591114cd6c767458
SHA256:7c758612888782ccfe376823aee7cdcc7e0cdafb097f7ef50295a0b0c3a16edf
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-container-default:1.0-alpha-9-stable-1  Confidence:Highest

classworlds-1.1-alpha-2.jar

File Path: /var/m2/repository/classworlds/classworlds/1.1-alpha-2/classworlds-1.1-alpha-2.jar
MD5: 82cacb7d9724c4a4e4d20f004884d4da
SHA1: 05adf2e681c57d7f48038b602f3ca2254ee82d47
SHA256:2bf4e59f3acd106fea6145a9a88fe8956509f8b9c0fdd11eb96fee757269e3f3
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: classworlds:classworlds:1.1-alpha-2  Confidence:Highest

plexus-interpolation-1.25.jar

Description:

 The Plexus project provides a full software stack for creating and executing software projects.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/codehaus/plexus/plexus-interpolation/1.25/plexus-interpolation-1.25.jar
MD5: 86cc99a26f3b3caa0fc2c8c77f4c03b0
SHA1: 3b37b3335e6a97e11e690bbdc22ade1a5deb74d6
SHA256:e003802501574637f7abdc4e83e6d509a31e9ff825d12da6d1e419acf9688705
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-interpolation:1.25  Confidence:Highest

doxia-sink-api-1.8.jar

Description:

 Doxia Sink API.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-sink-api/1.8/doxia-sink-api-1.8.jar
MD5: a6f9d0a509e4f0673399b993b19b321a
SHA1: bf8a5cca08a4f443a6410b66b45cf128b127198a
SHA256:144d4115fbf9dfdb483d07221b50ff0fd6a271ea91a075dfc09c72d3664fc13f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-sink-api:1.8  Confidence:Highest

doxia-logging-api-1.8.jar

Description:

 Doxia Logging API.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-logging-api/1.8/doxia-logging-api-1.8.jar
MD5: aa18518877da1e3ba3d87276bb7b2dd0
SHA1: 7c6642d71e3d3ec0cb28f59cfa1ce1a8a37f7f48
SHA256:24d3085e7bbbc197a64328c9cca135cb3b746b15ce2a335fd417df84c96c6aff
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-logging-api:1.8  Confidence:Highest

maven-reporting-impl-3.0.0.jar

Description:

 Abstract classes to manage report generation.

File Path: /var/m2/repository/org/apache/maven/reporting/maven-reporting-impl/3.0.0/maven-reporting-impl-3.0.0.jar
MD5: 69cb692fbf30f8d6fc495d47ebefc591
SHA1: 988c1a6fc3ffc41a5b91621963f99589f9dde566
SHA256:721ce27b1403dbbeaa6a0171d1183de603bb7ba56c61cccb381b0bc0ff00fe36
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.reporting:maven-reporting-impl:3.0.0  Confidence:Highest

maven-reporting-api-3.0.jar

Description:

 API to manage report generation.

File Path: /var/m2/repository/org/apache/maven/reporting/maven-reporting-api/3.0/maven-reporting-api-3.0.jar
MD5: 48cd00abc388c5156879b335e869adab
SHA1: b2541dd07d08cd5eff9bd4554a2ad6a4198e2dfe
SHA256:498949e5576b022559d1622e534c18e052f94dec883924b67e0a4e8676c07b17
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.reporting:maven-reporting-api:3.0  Confidence:Highest

doxia-decoration-model-1.7.4.jar

Description:

 The Decoration Model handles the decoration descriptor for sites, also known as site.xml.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-decoration-model/1.7.4/doxia-decoration-model-1.7.4.jar
MD5: 8193ee7277e958355f754adf0ffdcd09
SHA1: e0b3ed5b1fdd4df92e0981a57796eedd055654c2
SHA256:2da5e88be0074a96ba3407313de0a483a6a666da78e8c1f388594a485d4e58b0
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-decoration-model:1.7.4  Confidence:Highest

doxia-core-1.7.jar

Description:

 Doxia core classes and interfaces.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-core/1.7/doxia-core-1.7.jar
MD5: a977f1657b3da1f37f2e7ea5737f878e
SHA1: 2b60ca4ed2fa959361e7107083925973de509126
SHA256:33e4a3e5c5599c9eb06477fd2af7b642fd5b5937cb788bfe74eaf7c227259340
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-core:1.7  Confidence:Highest

commons-lang-2.4.jar

Description:

 
        Commons Lang, a package of Java utility classes for the
        classes that are in java.lang's hierarchy, or are considered to be so
        standard as to justify existence in java.lang.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/commons-lang/commons-lang/2.4/commons-lang-2.4.jar
MD5: 237a8e845441bad2e535c57d985c8204
SHA1: 16313e02a793435009f1e458fa4af5d879f6fb11
SHA256:2c73b940c91250bc98346926270f13a6a10bb6e29d2c9316a70d134e382c873e
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-lang:commons-lang:2.4  Confidence:Highest

httpclient-4.0.2.jar

Description:

 
   HttpComponents Client (base module)

License:

Apache License: ../LICENSE.txt
File Path: /var/m2/repository/org/apache/httpcomponents/httpclient/4.0.2/httpclient-4.0.2.jar
MD5: d685d72de1a8305bd84c5d6b002214b7
SHA1: 781b68c2fd5335de914166241b8d4bfe8c2f91b7
SHA256:377e963549427abe67e7c21b2c374cfa87c9218a9a947d71d7675a4cbdff20d0
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.httpcomponents:httpclient:4.0.2  Confidence:Highest
  • cpe: cpe:/a:apache:httpclient:4.0.2  Confidence:Low  

commons-logging-1.1.1.jar

Description:

 Commons Logging is a thin adapter allowing configurable bridging to other,
    well known logging systems.

File Path: /var/m2/repository/commons-logging/commons-logging/1.1.1/commons-logging-1.1.1.jar
MD5: ed448347fc0104034aa14c8189bf37de
SHA1: 5043bfebc3db072ed80fbd362e7caf00e885d8ae
SHA256:ce6f913cad1f0db3aad70186d65c5bc7ffcc9a99e3fe8e0b137312819f7c362f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-logging:commons-logging:1.1.1  Confidence:Highest

commons-codec-1.3.jar

Description:

 The codec package contains simple encoder and decoders for
   various formats such as Base64 and Hexadecimal.  In addition to these
   widely used encoders and decoders, the codec package also maintains a
   collection of phonetic encoding utilities.

License:

The Apache Software License, Version 2.0: /LICENSE.txt
File Path: /var/m2/repository/commons-codec/commons-codec/1.3/commons-codec-1.3.jar
MD5: 8e149c1053741c03736a52df83974dcc
SHA1: fd32786786e2adb664d5ecc965da47629dca14ba
SHA256:1bafd2ece2e88db4cdf835a7f8f0de65fab5b1147977a5dcc59b7c1b8c6f5080
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-codec:commons-codec:1.3  Confidence:Highest

httpcore-4.0.1.jar

Description:

 
   HttpComponents Core (Java 1.3 compatible)

License:

Apache License: http://www.apache.org/licenses/LICENSE-2.0.html
File Path: /var/m2/repository/org/apache/httpcomponents/httpcore/4.0.1/httpcore-4.0.1.jar
MD5: 6c1963fd8ac0c40c004c9e892e0d7703
SHA1: e813b8722c387b22e1adccf7914729db09bcb4a9
SHA256:3b6bf92affa85d4169a91547ce3c7093ed993b41ad2df80469fc768ad01e6b6b
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.httpcomponents:httpcore:4.0.1  Confidence:Highest

xmlunit-1.5.jar

Description:

 XMLUnit compares a control XML document to a test document or the result of a transformation, validates documents, and compares the results of XPath expressions.

License:

BSD License: http://xmlunit.svn.sourceforge.net/viewvc/*checkout*/xmlunit/trunk/xmlunit/LICENSE.txt
File Path: /var/m2/repository/xmlunit/xmlunit/1.5/xmlunit-1.5.jar
MD5: 99f2eb164a7609da9a77975843b09405
SHA1: 7789cef5caffdecab50fd6099535ad2bc2e98044
SHA256:b041399902889bef7fa489370d0e8f4d862812938beb14c88d93d250d464fb0d
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: xmlunit:xmlunit:1.5  Confidence:Highest

doxia-site-renderer-1.7.4.jar

Description:

 The Site Renderer handles the rendering of sites, merging site decoration with document content.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-site-renderer/1.7.4/doxia-site-renderer-1.7.4.jar
MD5: 4de16c0d46df6025c86975b2a158b192
SHA1: 2085f1e7f4f1a0e0e33def90b3184724a68f122f
SHA256:500d6e6bbd59f71ff20e4766f6141bd4fbb67da36eced618288d39ba8e9283bc
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-site-renderer:1.7.4  Confidence:Highest

doxia-skin-model-1.7.4.jar

Description:

 The Skin Model defines metadata for Doxia Sitetools skins.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-skin-model/1.7.4/doxia-skin-model-1.7.4.jar
MD5: f0f9195e5ce56253df1dbcc6e2b81159
SHA1: 60bfd521b3771d26f0d05e33e560475652777caa
SHA256:829c5b4a768ff5f23ace9b3e6531249db768c1bca427ac51579a594240073cd4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-skin-model:1.7.4  Confidence:Highest

doxia-module-xhtml-1.7.jar

Description:

 
    A Doxia module for Xhtml source documents.
    Xhtml format is supported both as source and target formats.

File Path: /var/m2/repository/org/apache/maven/doxia/doxia-module-xhtml/1.7/doxia-module-xhtml-1.7.jar
MD5: 0a0c16b74815ef59cd592eebaefc0ee0
SHA1: feb193a7bf81cca98270657c8757273016abac8a
SHA256:de41a9b940560ce070f07f9b894633e748eb2f74a3576dd799a37db79c9f3f41
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.maven.doxia:doxia-module-xhtml:1.7  Confidence:Highest

plexus-i18n-1.0-beta-7.jar

File Path: /var/m2/repository/org/codehaus/plexus/plexus-i18n/1.0-beta-7/plexus-i18n-1.0-beta-7.jar
MD5: 65d4f673bd0c49dbc67e020e96b00753
SHA1: 3690f10a668b3c7ac2ef563f14cfb6b2ba30ee57
SHA256:fff07392dc6b29ef90c435ab004671a715f0aa36653e53b44c358eb842ce67d9
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-i18n:1.0-beta-7  Confidence:Highest

plexus-velocity-1.2.jar

File Path: /var/m2/repository/org/codehaus/plexus/plexus-velocity/1.2/plexus-velocity-1.2.jar
MD5: 7d7805136e8165f53c944612a809f1a6
SHA1: 1331b9d6bbf99ead362c68c2f318ebe5fedda598
SHA256:b4c4a0dbeacad54306a1ae230eff5ab45d58e3ab88c86ab7245d3a0772be57ab
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.codehaus.plexus:plexus-velocity:1.2  Confidence:Highest

velocity-1.7.jar

Description:

 Apache Velocity is a general purpose template engine.

File Path: /var/m2/repository/org/apache/velocity/velocity/1.7/velocity-1.7.jar
MD5: 3692dd72f8367cb35fb6280dc2916725
SHA1: 2ceb567b8f3f21118ecdec129fe1271dbc09aa7a
SHA256:ec92dae810034f4b46dbb16ef4364a4013b0efb24a8c5dd67435cae46a290d8e
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.velocity:velocity:1.7  Confidence:Highest

velocity-tools-2.0.jar

Description:

 
        VelocityTools is an integrated collection of Velocity subprojects
        with the common goal of creating tools and infrastructure to speed and ease
        development of both web and non-web applications using the Velocity template
        engine.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/apache/velocity/velocity-tools/2.0/velocity-tools-2.0.jar
MD5: 51ed2c6c0103cf3fdbeb9aa5170f5288
SHA1: 69936384de86857018b023a8c56ae0635c56b6a0
SHA256:b174eb36bc48c25dce10571c7d3d5dca4e4c1b3e2e31a92b9ed68fe9dea688d9
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.velocity:velocity-tools:2.0  Confidence:Highest

commons-beanutils-1.7.0.jar

File Path: /var/m2/repository/commons-beanutils/commons-beanutils/1.7.0/commons-beanutils-1.7.0.jar
MD5: 0f18acf5fa857f9959675e14d901a7ce
SHA1: 5675fd96b29656504b86029551973d60fb41339b
SHA256:24bcaa20ccbdc7c856ce0c0aea144566943403e2e9f27bd9779cda1d76823ef4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-beanutils:commons-beanutils:1.7.0  Confidence:Highest
  • cpe: cpe:/a:apache:commons_beanutils:1.7.0  Confidence:Low  

CVE-2014-0114  

Severity:High
CVSS Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
CWE: CWE-20 Improper Input Validation 

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Software & Versions: (show all)

commons-digester-1.8.jar

Description:

 The Digester package lets you configure an XML->Java object mapping module
    which triggers certain actions called rules whenever a particular 
    pattern of nested XML elements is recognized.

License:

The Apache Software License, Version 2.0: /LICENSE.txt
File Path: /var/m2/repository/commons-digester/commons-digester/1.8/commons-digester-1.8.jar
MD5: cf89c593f0378e9509a06fce7030aeba
SHA1: dc6a73fdbd1fa3f0944e8497c6c872fa21dca37e
SHA256:05662373044f3dff112567b7bb5dfa1174e91e074c0c727b4412788013f49d56
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-digester:commons-digester:1.8  Confidence:Highest

commons-chain-1.1.jar

Description:

 An implmentation of the GoF Chain of Responsibility pattern

License:

The Apache Software License, Version 2.0: /LICENSE.txt
File Path: /var/m2/repository/commons-chain/commons-chain/1.1/commons-chain-1.1.jar
MD5: d4ce482153073855e7c6453dc3c725cb
SHA1: 3038bd41dcdb2b63b8c6dcc8c15f0fdf3f389012
SHA256:e408f72da5ed4c5db6ae19e8c3b7ee36259c36c05f7a77f15509a014bfe7bcaa
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-chain:commons-chain:1.1  Confidence:Highest

commons-validator-1.3.1.jar

Description:

 Commons Validator provides the building blocks for both client side validation
    and server side data validation. It may be used standalone or with a framework like
    Struts.

License:

The Apache Software License, Version 2.0: /LICENSE.txt
File Path: /var/m2/repository/commons-validator/commons-validator/1.3.1/commons-validator-1.3.1.jar
MD5: 4fe711769d6d61f51c21d6c89d70e904
SHA1: d1fd6b1510f25e827adffcf17de3c85fa00e9391
SHA256:d3680636c84e5cea6bfe43f338f8bab03d6a3e18cc663fc8b671684ef66c0c8d
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: commons-validator:commons-validator:1.3.1  Confidence:Highest

dom4j-1.1.jar

File Path: /var/m2/repository/dom4j/dom4j/1.1/dom4j-1.1.jar
MD5: f1c39d0d2b2c6f5ffb0046841a34b5c9
SHA1: 0690b3108a502c8f033ea87e7278aec309ffa668
SHA256:50bd5c21b5fbd27b8bbb5f8050544b53f49a4480fd347ce9c46d55c706015156
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:dom4j_project:dom4j:1.1  Confidence:Low  
  • maven: dom4j:dom4j:1.1  Confidence:Highest

oro-2.0.8.jar

File Path: /var/m2/repository/oro/oro/2.0.8/oro-2.0.8.jar
MD5: 42e940d5d2d822f4dc04c65053e630ab
SHA1: 5592374f834645c4ae250f4c9fbb314c9369d698
SHA256:e00ccdad5df7eb43fdee44232ef64602bf63807c2d133a7be83ba09fd49af26e
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: oro:oro:2.0.8  Confidence:Highest

sslext-1.2-0.jar

License:

Apache Software License, Version 1.1: http://www.apache.org/licenses/LICENSE-1.1
File Path: /var/m2/repository/sslext/sslext/1.2-0/sslext-1.2-0.jar
MD5: fda7f2a2f7ac9b017a5de1a4742753fd
SHA1: c86a7db4ac0bc450e675f3d44b3d64cdc934361b
SHA256:4ec193f85bf3c5e84be4ef79fe1e8e71493b317858735cfe062c4c54f818c312
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: sslext:sslext:1.2-0  Confidence:Highest

struts-core-1.3.8.jar

File Path: /var/m2/repository/org/apache/struts/struts-core/1.3.8/struts-core-1.3.8.jar
MD5: 868de456b4d4331d6dcc4e8d3bee884e
SHA1: 66178d4a9279ebb1cd1eb79c10dc204b4199f061
SHA256:a7881710517dd6a50fa81c04d494e1493ad326bcc1adf2eb9493e5eb9ca9e077
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.apache.struts:struts-core:1.3.8  Confidence:Highest
  • cpe: cpe:/a:apache:struts:1.3.8  Confidence:Highest  

CVE-2014-0114  

Severity:High
CVSS Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
CWE: CWE-20 Improper Input Validation 

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Software & Versions: (show all)

CVE-2015-0899  

Severity:Medium
CVSS Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
CWE: CWE-20 Improper Input Validation 

The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.

Vulnerable Software & Versions: (show all)

CVE-2016-1181  

Severity:Medium
CVSS Score: 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P)

ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute arbitrary code or cause a denial of service (unexpected memory access) via a multipart request, a related issue to CVE-2015-0899.

Vulnerable Software & Versions: (show all)

CVE-2016-1182  

Severity:Medium
CVSS Score: 6.4 (AV:N/AC:L/Au:N/C:N/I:P/A:P)
CWE: CWE-20 Improper Input Validation 

ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a denial of service via crafted input, a related issue to CVE-2015-0899.

Vulnerable Software & Versions: (show all)

antlr-2.7.2.jar

File Path: /var/m2/repository/antlr/antlr/2.7.2/antlr-2.7.2.jar
MD5: a73459120df5cadf75eaa98453433a01
SHA1: 546b5220622c4d9b2da45ad1899224b6ce1c8830
SHA256:2a53206963dfa78e33746b6f8367f7d9970fa36865a825d7bfbce1784dc0f4d4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: antlr:antlr:2.7.2  Confidence:Highest

struts-tiles-1.3.8.jar

File Path: /var/m2/repository/org/apache/struts/struts-tiles/1.3.8/struts-tiles-1.3.8.jar
MD5: f41992ab2729b1cb9c6b4721465aa4e4
SHA1: 6d212f8ea5d908bc9906e669428b7694dff60785
SHA256:3d66e61734b2ddad6e4b34aaa2382480ad6061e59e5e178e346cc275c0429e57
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:apache:struts:1.3.8  Confidence:Highest  
  • maven: org.apache.struts:struts-tiles:1.3.8  Confidence:Highest
  • cpe: cpe:/a:apache:tiles:1.3.8  Confidence:Low  

CVE-2014-0114  

Severity:High
CVSS Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
CWE: CWE-20 Improper Input Validation 

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Software & Versions: (show all)

CVE-2015-0899  

Severity:Medium
CVSS Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
CWE: CWE-20 Improper Input Validation 

The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.

Vulnerable Software & Versions: (show all)

CVE-2016-1181  

Severity:Medium
CVSS Score: 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P)

ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute arbitrary code or cause a denial of service (unexpected memory access) via a multipart request, a related issue to CVE-2015-0899.

Vulnerable Software & Versions: (show all)

CVE-2016-1182  

Severity:Medium
CVSS Score: 6.4 (AV:N/AC:L/Au:N/C:N/I:P/A:P)
CWE: CWE-20 Improper Input Validation 

ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a denial of service via crafted input, a related issue to CVE-2015-0899.

Vulnerable Software & Versions: (show all)

commons-collections-3.2.1.jar

Description:

 Types that extend and augment the Java Collections Framework.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/commons-collections/commons-collections/3.2.1/commons-collections-3.2.1.jar
MD5: 13bc641afd7fd95e09b260f69c1e4c91
SHA1: 761ea405b9b37ced573d2df0d1e3a4e0f9edc668
SHA256:87363a4c94eaabeefd8b930cb059f66b64c9f7d632862f23de3012da7660047b
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

CVE-2015-6420  

Severity:High
CVSS Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
CWE: CWE-502 Deserialization of Untrusted Data 

Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Vulnerable Software & Versions: (show all)

CVE-2017-15708  

Severity:High
CVSS Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
CWE: CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 

In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI). So Apache Synapse 3.0.1 or all previous releases (3.0.0, 2.1.0, 2.0.0, 1.2, 1.1.2, 1.1.1) allows remote code execution attacks that can be performed by injecting specially crafted serialized objects. And the presence of Apache Commons Collections 3.2.1 (commons-collections-3.2.1.jar) or previous versions in Synapse distribution makes this exploitable. To mitigate the issue, we need to limit RMI access to trusted users only. Further upgrading to 3.0.1 version will eliminate the risk of having said Commons Collection version. In Synapse 3.0.1, Commons Collection has been updated to 3.2.2 version.

Vulnerable Software & Versions: (show all)

jruby-complete-9.2.7.0.jar: jruby.dll

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/bin/jruby.dll
MD5: 92ea01d27afe7f69a17e32bba8ed27cf
SHA1: 53e94465693dd9984f84bcb7d0e58c450d76d12e
SHA256:1ff883b2e2c4cf05b2613e2b2bc9cca1594fb4a77e3eb1487bd90e76e535d431
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jruby.exe

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/bin/jruby.exe
MD5: cbc0c0d001761853cd4a609f3ad2c49c
SHA1: 2ef43c2c58d0e34681edff2f6aa3761638cbde1c
SHA256:7f88e44beda6fbbf3f3d8dcebba0f3f0c5cc4c154f631c8003133bb994743c32
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jrubyw.exe

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/bin/jrubyw.exe
MD5: ec57f911978d52538a2fbd1570d1401b
SHA1: 2fa44467856f9e6daaab94de212b90ae2eba821d
SHA256:c18b6ac704962a999694d9c1924bf0e0e922ec45098904210869cc2e0c8c3e68
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jline-2.14.6.jar

License:

The BSD License: http://www.opensource.org/licenses/bsd-license.php
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jline/jline/2.14.6/jline-2.14.6.jar
MD5: 480423551649bc6980b43f09e4717272
SHA1: c3aeac59c022bdc497c8c48ed86fa50450e4896a
SHA256:97d1acaac82409be42e622d7a54d3ae9d08517e8aefdea3d2ba9791150c2f02d
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: jline:jline:2.14.6  Confidence:High

jruby-complete-9.2.7.0.jar: jopenssl.jar

Description:

 JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.

License:

EPL-1.0: http://opensource.org/licenses/EPL-1.0
GPL-2.0: http://opensource.org/licenses/GPL-2.0
LGPL-2.1: http://opensource.org/licenses/LGPL-2.1
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jopenssl.jar
MD5: fd021c75ba66fd3405ce2d6048376464
SHA1: 2c0223fd1ec085eaf5e0e41a0d92ed456ac03e3e
SHA256:d320dba8efcca3a8d6c04e2f055092ec0108c9ec0859633d72cbd91e34abd601
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:jruby:jruby:0.10.2  Confidence:Low  
  • maven: rubygems:jruby-openssl:0.10.2  Confidence:High

CVE-2010-1330  

Severity:Medium
CVSS Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N)
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 

The regular expression engine in JRuby before 1.4.1, when $KCODE is set to 'u', does not properly handle characters immediately after a UTF-8 character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.

Vulnerable Software & Versions: (show all)

CVE-2011-4838  

Severity:High
CVSS Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
CWE: CWE-20 Improper Input Validation 

JRuby before 1.6.5.1 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Vulnerable Software & Versions: (show all)

CVE-2012-5370  

Severity:Medium
CVSS Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
CWE: CWE-310 Cryptographic Issues 

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4838.

Vulnerable Software & Versions:

jruby-complete-9.2.7.0.jar: generator.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/json/ext/generator.jar
MD5: 98b585d488e4b079b39624ce04da9893
SHA1: 16e53e1996a14c583a37aec04c1c1c67918091b2
SHA256:8e821952a433b778c7a8199a10a6bf704a1b04ce1302cb74bcfdc514401abf27
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: parser.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/json/ext/parser.jar
MD5: f67aff6c1909fb9c997c38dee4d3af8f
SHA1: 2c237e2fe8c6e6b9153485f6467ed9dd0711e53d
SHA256:693fa906d78a85f0a24d424ccc5d7461032e61b17b90929a5f0f6663eaa36609
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: bcpkix-jdk15on-1.61.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bcpkix-jdk15on/1.61/bcpkix-jdk15on-1.61.jar
MD5: 0ee0052e010ef9de6242e57899db88ef
SHA1: 89bb3aa5b98b48e584eee2a7401b7682a46779b4
SHA256:326eb81c2a0cb0d665733a9cc7c03988081101ad17d1453b334368453658591f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: bcprov-jdk15on-1.61.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bcprov-jdk15on/1.61/bcprov-jdk15on-1.61.jar
MD5: 5aeb35a904766692ad96ee6590c86e65
SHA1: 00df4b474e71be02c1349c3292d98886f888d1f7
SHA256:dba6e408f205215ad1a89b70b37353d3cdae4ec61037e1feee885704e2413458
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.61  Confidence:Low  

jruby-complete-9.2.7.0.jar: bctls-jdk15on-1.61.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bctls-jdk15on/1.61/bctls-jdk15on-1.61.jar
MD5: a78fb36fad05b8dae75563de51d1b0e1
SHA1: a8ccdf03d2addc3dad09d8749d8345438c66f6d5
SHA256:606acb2ee81176c52f2a79e7ec63e854ec5e9ab9f9a9edd1fec7d3db926dde2c
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: snakeyaml-1.23.jar

Description:

 YAML 1.1 parser and emitter for Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/yaml/snakeyaml/1.23/snakeyaml-1.23.jar
MD5: 64ec8bd26b6d5034a87ecb1c8ce0efdc
SHA1: ec62d74fe50689c28c0ff5b35d3aebcaa8b5be68
SHA256:13009fb5ede3cf2be5a8d0f1602155aeaa0ce5ef5f9366892bd258d8d3d4d2b1
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.yaml:snakeyaml:1.23  Confidence:High

jruby-complete-9.2.7.0.jar: psych.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/psych.jar
MD5: 770880c7b0c659acae26a0d5e4f4c89c
SHA1: ff464c9c6632fbb13f92df04c711c5cdc3efc045
SHA256:efdc644fec5081d0cb1c19192ce47c9582a37df6ebf54354b3a49bafd5aa6e41
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: cparse-jruby.jar

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/racc/cparse-jruby.jar
MD5: ea7a765ea611d271d21465f9c2a68b79
SHA1: 37572f403a1bd512e76e40e4dc4d6f36528fd2bf
SHA256:ca24a45726fcf245987d033ed7135bb04ded9b3b27dd0d83c24f4206cad11890
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: readline.jar

Description:

 readline extension for JRuby

License:

EPL-1.0: http://opensource.org/licenses/EPL-1.0
GPL-2.0: http://opensource.org/licenses/GPL-2.0
LGPL-2.1: http://opensource.org/licenses/LGPL-2.1
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/readline.jar
MD5: ee095d6e2062601784e821c0761b7a8d
SHA1: f94495275a3d40af13986495b60d7a2029d8eba5
SHA256:25f6e191a7cddf15c926d9c5fb598237517b201d041f35f5cd01ae446b17d9d4
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:jruby:jruby:1.3.7  Confidence:Low  
  • maven: rubygems:jruby-readline:1.3.7  Confidence:High

CVE-2010-1330  

Severity:Medium
CVSS Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N)
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 

The regular expression engine in JRuby before 1.4.1, when $KCODE is set to 'u', does not properly handle characters immediately after a UTF-8 character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.

Vulnerable Software & Versions: (show all)

CVE-2011-4838  

Severity:High
CVSS Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
CWE: CWE-20 Improper Input Validation 

JRuby before 1.6.5.1 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Vulnerable Software & Versions: (show all)

CVE-2012-5370  

Severity:Medium
CVSS Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
CWE: CWE-310 Cryptographic Issues 

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4838.

Vulnerable Software & Versions:

jruby-complete-9.2.7.0.jar: jffi-1.2.dll

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/jni/i386-Windows/jffi-1.2.dll
MD5: 841e60814ed6b2971a47b267aef1c58a
SHA1: 07d30c6407fefad8df4b6afc4d85f83e547975ca
SHA256:d63b0ec9a7cc75c26fa951928bf550c0e9a5e6c195a3de94a9c24995206bbfd2
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jffi-1.2.dll

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/jni/x86_64-Windows/jffi-1.2.dll
MD5: 5d80b61c1f9e31860c17b3a410948e7e
SHA1: 5ca292116336ee4ceed00d10e756afea580e62cf
SHA256:58398ba5cda1b7cb89ad4e03dd4a658006956f81acfef4efb4e7dd934e2733ef
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jline-2.14.6.jar: jansi.dll

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jline/jline/2.14.6/jline-2.14.6.jar/META-INF/native/windows32/jansi.dll
MD5: 83fdcbb296f9732176748e443c7637a5
SHA1: f91fda2c7f9f485db21a50c05ff3a65c1fa20090
SHA256:7db0fdba01b93f8d45c8fa9ba949f424efb0361d6f8af5561d769378d8b3a1ac
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar: jline-2.14.6.jar: jansi.dll

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jline/jline/2.14.6/jline-2.14.6.jar/META-INF/native/windows64/jansi.dll
MD5: b009262ec2c7e84839af9729b752f14e
SHA1: 8d96f40da8970ddd48af4517512a0fdd077c33da
SHA256:daed7ea5b66bce3821742564af812b6f4e25939b3d273ed5a156ba7c92c452dc
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • None

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jffi:1.2.18)

Description:

 Java Foreign Function Interface

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jffi/pom.xml
MD5: 8f7f903f659a9f0d06decd22e20d0be9
SHA1: 2b5072ff3f379a5da78af5d31086f55f9572a0d1
SHA256:e9127a7a45196444b46ca64304a139b7da148739ff0cbcd0f60292163563a354
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.github.jnr:jffi:1.2.18  Confidence:High
  • cpe: cpe:/a:github:github:1.2.18  Confidence:Low  

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-constants:0.9.12)

Description:

 A set of platform constants (e.g. errno values)

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-constants/pom.xml
MD5: c5fa9075f2d9069503fe533bf7269347
SHA1: dfb1b71d18b137d95ee2bcb3bbfe0bb0b720b4c1
SHA256:4c390808024e92b769115d75fb424af96d2fd1404b359580f9a3b985cc0e0d93
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.github.jnr:jnr-constants:0.9.12  Confidence:High
  • cpe: cpe:/a:github:github:0.9.12  Confidence:Low  

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-enxio:0.19)

Description:

 Native I/O access for java

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-enxio/pom.xml
MD5: 0cf0e0d386acc7f833c9200acfe734c7
SHA1: 034b44e637cc34a3b47ef6d718148b598a3eb3fe
SHA256:1cb7867e2bb790a6e62de24fe0dc5c4a68f8904092743a8a32ecb4796397453a
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:github:github:0.19  Confidence:Low  
  • maven: com.github.jnr:jnr-enxio:0.19  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-ffi:2.1.9)

Description:

 A library for invoking native functions from java

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-ffi/pom.xml
MD5: cb493756935e3b13cfc2ec30137b7df0
SHA1: 786db5464edfce10f4b17f0ebec09282915116c7
SHA256:6d10081f730242fb36a0a61d9b6dec015e56c866cf90e5c33e655743539e16a5
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:github:github:2.1.9  Confidence:Low  
  • maven: com.github.jnr:jnr-ffi:2.1.9  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-netdb:1.1.6)

Description:

 Lookup TCP and UDP services from java

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-netdb/pom.xml
MD5: 97b63f6ae3cf52e1a951bf30caf65566
SHA1: 7fe2442e26538f534e429de408ac88d3077da7fd
SHA256:8e7a582ee6ae28e1bf20a9ebd65bf1031d64a2fe8e45a10dc334adbcad3a281b
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:github:github:1.1.6  Confidence:Low  
  • maven: com.github.jnr:jnr-netdb:1.1.6  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-posix:3.0.49)

Description:

 
    Common cross-project/cross-platform POSIX APIs

License:

Eclipse Public License - v 2.0: https://www.eclipse.org/legal/epl-2.0/
GNU General Public License Version 2: http://www.gnu.org/copyleft/gpl.html
GNU Lesser General Public License Version 2.1: http://www.gnu.org/licenses/lgpl.html
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-posix/pom.xml
MD5: 88dd39e5c7991855a5f1f53c1b3fac83
SHA1: f4aa81a847ef3cb433c0c55d01c5dc0f101aab13
SHA256:09da885accc67629d80a05ec106bd12a1180a770724b01ef8da810c817d66ccb
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.github.jnr:jnr-posix:3.0.49  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.github.jnr:jnr-unixsocket:0.20)

Description:

 Native I/O access for java

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.github.jnr/jnr-unixsocket/pom.xml
MD5: 0cf92880b05eb7695aa3fbfc62dbe85c
SHA1: 623b60ea7201143887f8068ce76e72a42afa2837
SHA256:54a5efd983fbde3051df1c99e19ff24c81808f7d70968d3ed31995f0bfb726b8
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:github:github:0.20  Confidence:Low  
  • maven: com.github.jnr:jnr-unixsocket:0.20  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.headius:backport9:1.2)

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.headius/backport9/pom.xml
MD5: cb348fc8f6302d9a7872c5b3dc9052c6
SHA1: 62abae56b80b6d2024e34afff9c2fb86d8a1977d
SHA256:b4622e32febe5703a055792c076b47e239062b85111737c8840a9e4a40ae992f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.headius:backport9:1.2  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.headius:invokebinder:1.11)

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.headius/invokebinder/pom.xml
MD5: 337e96c4ce329636688e976f24ce5218
SHA1: 76f7da575b64e531d45cf36a3b48bb990df015f5
SHA256:f383be8b504eb2b4d4d76a961eb39900b46e11732e422464b354569c640e128f
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.headius:invokebinder:1.11  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.headius:options:1.4)

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.headius/options/pom.xml
MD5: 71910d212b33ca5f3f5a8a2aff7c8785
SHA1: 51766d35193ffa3f9c131d574cf2570447607b95
SHA256:4286dda1f35013b2566c649e4b1a326fe5032f2f9f719bf36e2ba0ce63246a2c
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.headius:options:1.4  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.jcraft:jzlib:1.1.3)

Description:

 JZlib is a re-implementation of zlib in pure Java

License:

BSD: http://www.jcraft.com/jzlib/LICENSE.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.jcraft/jzlib/pom.xml
MD5: 856f139610c4e36c1b0bdb5ad007c2a5
SHA1: 6e6789004c70477a6e2ea92c066b757534e63a10
SHA256:edb67251608556ad9584d00e46b5ef38ecf1246d571c0f80f24f50b285a9f682
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • cpe: cpe:/a:jcraft:jzlib:1.1.3  Confidence:Low  
  • maven: com.jcraft:jzlib:1.1.3  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: com.martiansoftware:nailgun-server:0.9.1)

Description:

 
        Nailgun is a client, protocol, and server for running Java programs from 
        the command line without incurring the JVM startup overhead. Programs run 
        in the server (which is implemented in Java), and are triggered by the 
        client (written in C), which handles all I/O.
        
        This project contains the SERVER ONLY.

File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/com.martiansoftware/nailgun-server/pom.xml
MD5: 365276754761735cc069e439a401fa8d
SHA1: 55ac54d56cbaa9468e964f4dc20b201cde1c611f
SHA256:e1e164a7e12f35d2d940cd4a52ab0cba37da07179eb3dfa70b8989dbeb305d5d
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: com.martiansoftware:nailgun-server:0.9.1  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: joda-time:joda-time:2.9.9)

Description:

 Date and time library to replace JDK date handling

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/joda-time/joda-time/pom.xml
MD5: b0251e9d2324103acef74f95b6b8fb7d
SHA1: d03e4fefb36959941b3e7cf6e157bbb0624f8554
SHA256:fc3db49d13f6061edb15774ad5a2a7b279ea51aa90097087988b05a806decfff
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: joda-time:joda-time:2.9.9  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: me.qmx.jitescript:jitescript:0.4.1)

Description:

 Java API for Bytecode

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/me.qmx.jitescript/jitescript/pom.xml
MD5: a8244f2c8843244d8934742315b47154
SHA1: 63a1b1c6c7ac7c29e8d7a065a9c2649058455749
SHA256:4001176ebaedccf43616c92dad87d0d305b54000cfae4e999675e8acb35735f6
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: me.qmx.jitescript:jitescript:0.4.1  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: org.jruby.jcodings:jcodings:1.0.43)

Description:

 Byte based encoding support library for java

License:

MIT License: http://www.opensource.org/licenses/mit-license.php
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/org.jruby.jcodings/jcodings/pom.xml
MD5: 3dc24bbc119cd43daf3ff306ac7e32a7
SHA1: 1f955832d96398486db23cddc309ab06df7e9075
SHA256:ff028075fbf4ba6c5777dc2fb609b2b55530834b0e4fc60c71209455c0466d39
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.jruby.jcodings:jcodings:1.0.43  Confidence:High

jruby-complete-9.2.7.0.jar (shaded: org.jruby.joni:joni:2.1.26)

Description:

 
    Java port of Oniguruma: http://www.geocities.jp/kosako3/oniguruma
    that uses byte arrays directly instead of java Strings and chars

License:

MIT License: http://www.opensource.org/licenses/mit-license.php
File Path: /var/m2/repository/org/jruby/jruby-complete/9.2.7.0/jruby-complete-9.2.7.0.jar/META-INF/maven/org.jruby.joni/joni/pom.xml
MD5: 3a15e2448c2a06f601472c57c08b8c78
SHA1: 8bd84b5bf472e89d0fdf4da22347a080a60f0da9
SHA256:e9b7fc21af20a9a1b106119dd2d9b275dc1f5cc8bd0b0a5c7715bb16b01349da
Referenced In Project/Scope:Sass Compiler Plugin:compile

Identifiers

  • maven: org.jruby.joni:joni:2.1.26  Confidence:High
  • cpe: cpe:/a:oniguruma_project:oniguruma:2.1.26  Confidence:Low  


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the NPM Public Advisories.