Description

Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 Beta and release candidates before 2.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

http://www.openwall.com/lists/oss-security/2012/10/31/1

http://www.securityfocus.com/bid/56336

https://developers.google.com/web-toolkit/release-notes#Release_Notes_2_4_0

Related Vulnerabilities

CVE-2020-7676 Vulnerability in maven package org.webjars.npm:angular

CVE-2022-34192 Vulnerability in maven package org.jenkins-ci.plugins:ontrack

CVE-2018-12432 Vulnerability in maven package net.bull.javamelody:javamelody-core

CVE-2023-37602 Vulnerability in maven package org.opencms:opencms-core

CVE-2013-4204 Vulnerability in maven package com.google.gwt:gwt-user

Severity

Critical

Classification

CWE-79