Lucene search
Veracode Vulnerability DatabaseVERACODE:30139HistoryApr 23, 2021 - 3:41 a.m.
Cross-site Scripting (XSS)
2021-04-2303:41:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
47.9%
gwtupload is vulnerable to cross-site scripting. An attacker is able to inject and execute malicious script in a user’s browser via the name parameter of file upload functionality.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gwtupload library | le | 1.0.3 | |
| gwtupload library | le | 1.0.3 |
Related
osv
osv
Cross-site Scripting in GwtUpload
2021-04-22 16:15:33
CVE-2020-9447
2020-02-28 16:15:11
prion
prion
Cross site scripting
2020-02-28 16:15:00
cvelist
cvelist
CVE-2020-9447
2020-02-28 15:07:46
coresecurity
coresecurity
GWTUpload XSS in the File Upload Functionality
2020-03-04 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-03-02 09:19:26
github
github
Cross-site Scripting in GwtUpload
2021-04-22 16:15:33
cve
cve
CVE-2020-9447
2020-02-28 16:15:11
nvd
nvd
CVE-2020-9447
2020-02-28 16:15:11