Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
17 Feb 2021
28 Jan 2021
How to fix?
com.vaadin:vaadin-server to version 8.12.3 or higher.
com.vaadin:vaadin-server is a Java framework for modern Java web applications.
Affected versions of this package are vulnerable to Timing Attack by using CSRF.