Vulnerabilities > Liftweb
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-07-29 | CVE-2013-3300 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Liftweb Lift The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from other users' sessions via invalid input data containing a < (less than) character. | 4.0 |