Back to library list
pdfbox__pdfbox
Column Insecure: Icon 
indicates the version is insecure, otherwise 
Column CryptoMisuse: Icon indicates the version has cryptographic API misuse, otherwise
indicates the version is insecure, otherwise
Column CryptoMisuse: Icon
indicates the version has cryptographic API misuse, otherwise
| Version | Insecure | CryptoMisuse | Rule name | Method | Statement | Details |
|---|---|---|---|---|---|---|
| 0.6.4 |
|
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeEncryptedKey([B[BJ[BJJ)[B | r5 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2358) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeOwnerPassword([B[BJJ)[B | r3 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2361) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeUserPassword([B[BJ[BJJ)[B | r22 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2353) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.encryptData(JJ[BLjava/io/InputStream;Ljava/io/OutputStream;)V | r10 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2339) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.getUserPassword([B[BJJ)[B | r4 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2346) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| 0.7.1 |
|
|
MessageDigest | org.pdfbox.encryption.DocumentEncryption.encryptDocument(Ljava/lang/String;Ljava/lang/String;)V | r39 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2162) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeEncryptedKey([B[BI[BII)[B | r5 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2194) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeOwnerPassword([B[BII)[B | r3 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2203) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeUserPassword([B[BI[BII)[B | r21 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2188) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.encryptData(JJ[BLjava/io/InputStream;Ljava/io/OutputStream;)V | r10 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2170) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.getUserPassword([B[BIJ)[B | r4 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2177) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdfwriter.COSWriter.write(Lorg/pdfbox/cos/COSDocument;)V | r19 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2815) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| 0.7.3 |
|
|
KeyStore | org.pdfbox.Decrypt.main([Ljava/lang/String;)V | virtualinvoke r19.<java.security.KeyStore: void load(java.io.InputStream,char[])>($r6, $r7) | Second parameter should never be of type java.lang.String. |
| - | - |
|
MessageDigest | org.pdfbox.encryption.DocumentEncryption.initForEncryption()V | r38 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2142) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeEncryptedKey([B[BI[BII)[B | r5 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2176) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeOwnerPassword([B[BII)[B | r3 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2185) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.computeUserPassword([B[BI[BII)[B | r21 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2172) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.encryptData(JJ[BLjava/io/InputStream;Ljava/io/OutputStream;)V | r10 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2156) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.encryption.PDFEncryption.getUserPassword([B[BIJ)[B | r4 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2160) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdfwriter.COSWriter.write(Lorg/pdfbox/pdmodel/PDDocument;)V | r30 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer2984) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
KeyStore | org.pdfbox.pdmodel.encryption.PublicKeyDecryptionMaterial.getPrivateKey()Ljava/security/Key; | $r10 = virtualinvoke $r7.<java.security.KeyStore: java.security.Key getKey(java.lang.String,char[])>($r8, $r9) | Second parameter should never be of type java.lang.String. |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.decryptDocument(Lorg/pdfbox/pdmodel/PDDocument;Lorg/pdfbox/pdmodel/encryption/DecryptionMaterial;)V | r39 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3565) | First parameter (with value "SHA-1") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
Cipher | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | r11 = staticinvoke <javax.crypto.Cipher: javax.crypto.Cipher getInstance(java.lang.String)>(r3) | First parameter (with value "1.2.840.113549.3.2") should be any of {AES, PBEWithHmacSHA224AndAES_128, PBEWithHmacSHA256AndAES_128, PBEWithHmacSHA384AndAES_128, PBEWithHmacSHA512AndAES_128, PBEWithHmacSHA224AndAES_256, PBEWithHmacSHA256AndAES_256, PBEWithHmacSHA384AndAES_256, PBEWithHmacSHA512AndAES_256, RSA} |
| - | - |
|
Cipher | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | virtualinvoke r11.<javax.crypto.Cipher: void init(int,java.security.Key,java.security.AlgorithmParameters)>(varReplacer3598, r10, r5) | Second parameter was not properly generated as generated Key |
| - | - |
|
Cipher | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | virtualinvoke r11.<javax.crypto.Cipher: void init(int,java.security.Key,java.security.AlgorithmParameters)>(varReplacer3598, r10, r5) | Third parameter was not properly generated as prepared Alg |
| - | - |
|
Cipher | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | virtualinvoke r7.<javax.crypto.Cipher: void init(int,java.security.Key)>(varReplacer3601, $r21) | Second parameter was not properly generated as generated Key |
| - | - |
|
KeyGenerator | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | r9 = staticinvoke <javax.crypto.KeyGenerator: javax.crypto.KeyGenerator getInstance(java.lang.String)>(r3) | First parameter (with value "1.2.840.113549.3.2") should be any of {AES, HmacSHA224, HmacSHA256, HmacSHA384, HmacSHA512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.PublicKeySecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | r41 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3588) | First parameter (with value "SHA-1") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.SecurityHandler.encryptData(JJLjava/io/InputStream;Ljava/io/OutputStream;)V | r12 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3610) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.StandardSecurityHandler.computeEncryptedKey([B[BI[BII)[B | r5 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3664) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.StandardSecurityHandler.computeOwnerPassword([B[BII)[B | r3 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3677) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.StandardSecurityHandler.computeUserPassword([B[BI[BII)[B | r21 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3671) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.StandardSecurityHandler.getUserPassword([B[BIJ)[B | r4 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3657) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
MessageDigest | org.pdfbox.pdmodel.encryption.StandardSecurityHandler.prepareDocumentForEncryption(Lorg/pdfbox/pdmodel/PDDocument;)V | r44 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(varReplacer3649) | First parameter (with value "MD5") should be any of {SHA-256, SHA-384, SHA-512} |
| - | - |
|
KeyStore | test.pdfbox.encryption.TestPublicKeyEncryption.testMultipleRecipients()V | virtualinvoke r11.<java.security.KeyStore: void load(java.io.InputStream,char[])>($r31, $r34) | Second parameter should never be of type java.lang.String. |
| - | - |
|
KeyStore | test.pdfbox.encryption.TestPublicKeyEncryption.testMultipleRecipients()V | virtualinvoke r14.<java.security.KeyStore: void load(java.io.InputStream,char[])>($r38, $r41) | Second parameter should never be of type java.lang.String. |
| - | - |
|
KeyStore | test.pdfbox.encryption.TestPublicKeyEncryption.testProtectionError()V | virtualinvoke r4.<java.security.KeyStore: void load(java.io.InputStream,char[])>($r6, $r7) | Second parameter should never be of type java.lang.String. |