Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Play Framework 安全漏洞
Vulnerability Description
Lightbend Play Framework是美国Lightbend公司的一款使用Scala语言编写的Web应用程序框架。 Play Framework 2.8.0版本至2.8.4版本存在安全漏洞,该漏洞源于作为表单字段发送的精心设计的JSON有效负载会导致数据放大。这将影响从2.8.0之前的Play版本迁移的用户,该版本使用Play Java API将具有受保护或私有字段的类序列化为JSON。
CVSS Information
N/A
Vulnerability Type
N/A