you should never deploy your tests into production. flosanlop17 schrieb am Donnerstag, 21. Dezember 2023 um 17:52:49 UTC+1:
> I am currently working on some security incidents reported in an > application that uses GWT, in its version 2.5.0 according to the report for > this version there are security vulnerabilities related to XSS, I was > reading a little the real notes of the versions above this one for example > 2.5.1 indicates that this vulnerability was fixed, But on investigation it > seems that this is not the case, according to the attached references this > novelty still persists. > > Continue reading the actual notes of later versions, but it's not clear if > any security patches were worked on in new versions. > > Reading the forum, I notice that in version 2.8.1 a vulnerability related > to XSS was also identified again. > > My question is which version then I could use that currently has these > vulnerabilities fixed. > > Very thanks for your help. > > References > https://www.openwall.com/lists/oss-security/2013/08/05/3 > https://www.openwall.com/lists/oss-security/2013/08/05/1 > https://groups.google.com/g/google-web-toolkit/c/Tx29wSZ8SZQ > -- You received this message because you are subscribed to the Google Groups "GWT Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit/690aec4c-81d8-4e0e-946d-58979cddc5c3n%40googlegroups.com.
