Description

Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 Beta and release candidates before 2.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

http://www.openwall.com/lists/oss-security/2012/10/31/1

http://www.securityfocus.com/bid/56336

https://developers.google.com/web-toolkit/release-notes#Release_Notes_2_4_0

Related Vulnerabilities

CVE-2023-42399 Vulnerability in maven package org.webjars.npm:jodit

CVE-2020-28847 Vulnerability in npm package valine

CVE-2015-1813 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2021-21616 Vulnerability in maven package org.biouno:uno-choice

CVE-2021-32859 Vulnerability in npm package baremetrics-calendar

Severity

Critical

Classification

CWE-79