VYPR

Maven package

net.liftweb/lift-webkit_2.9.1

pkg:maven/net.liftweb/lift-webkit_2.9.1

Vulnerabilities (1)

  • CVE-2013-3300Jul 29, 2013
    affected < 2.5fixed 2.5

    The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from other users' sessions via invalid input data containing a < (less than) character.