Vulnerabilities > Jhipster > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2015-20110 | Improper Restriction of Excessive Authentication Attempts vulnerability in Jhipster JHipster generator-jhipster before 2.23.0 allows a timing attack against validateToken due to a string comparison that stops at the first character that is different. | 7.5 |
| 2022-04-11 | CVE-2022-24815 | Unspecified vulnerability in Jhipster Generator-Jhipster JHipster is a development platform to quickly generate, develop, & deploy modern web applications & microservice architectures. | 8.1 |