Hi Frank, I'm sorry, but I don't understand your answer, could you explain a little better, thank you!
On Friday, December 22, 2023 at 8:15:29 AM UTC-5 Frank Hossfeld wrote: > you should never deploy your tests into production. > flosanlop17 schrieb am Donnerstag, 21. Dezember 2023 um 17:52:49 UTC+1: > >> I am currently working on some security incidents reported in an >> application that uses GWT, in its version 2.5.0 according to the report for >> this version there are security vulnerabilities related to XSS, I was >> reading a little the real notes of the versions above this one for example >> 2.5.1 indicates that this vulnerability was fixed, But on investigation it >> seems that this is not the case, according to the attached references this >> novelty still persists. >> >> Continue reading the actual notes of later versions, but it's not clear >> if any security patches were worked on in new versions. >> >> Reading the forum, I notice that in version 2.8.1 a vulnerability related >> to XSS was also identified again. >> >> My question is which version then I could use that currently has these >> vulnerabilities fixed. >> >> Very thanks for your help. >> >> References >> https://www.openwall.com/lists/oss-security/2013/08/05/3 >> https://www.openwall.com/lists/oss-security/2013/08/05/1 >> https://groups.google.com/g/google-web-toolkit/c/Tx29wSZ8SZQ >> > -- You received this message because you are subscribed to the Google Groups "GWT Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit/afd987c7-d65e-470b-91bb-67373f6adeadn%40googlegroups.com.
