gwtupload-samples is vulnerable to cross-site scripting (XSS). The attack is possible because it allows the attacker to input malicious file names using the upload functionality, leading to an execution of malicious script when the filename is processed.
CPE | Name | Operator | Version |
---|---|---|---|
gwtupload examples | le | 1.0.3 | |
gwtupload examples | le | 1.0.3 |