com.googlecode.gwtupload:gwtupload-project@1.0.0 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the com.googlecode.gwtupload:gwtupload-project package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Denial of Service (DoS)

com.googlecode.gwtupload:gwtupload-project is a library for uploading files to web servers, showing a progress bar with real information about the process (file size, bytes transferred, etc).

Affected versions of this package are vulnerable to Denial of Service (DoS). server/UploadServlet.java (the servlet for handling file upload) accepts a delay parameter that causes a thread to sleep. It can be abused to cause all of a server's threads to sleep, leading to denial of service.

How to fix Denial of Service (DoS)?

There is no fixed version for com.googlecode.gwtupload:gwtupload-project.

[0,)