Review

Detector:

Findbugs

Target:

project '

uberfire

' version

0.3.1

Tags:

Potential Misuse

Anomaly identified by the detector. Please review whether this anomaly corresponds to a misuse.

Finding:	finding-11
In File:	org/uberfire/server/FileUploadServlet.java
In Method:	writeResponse(HttpServletResponse, String)
Code with Finding:	`class FileUploadServlet { private void writeResponse(HttpServletResponse response, String ok) throws IOException { response.setContentType("text/html"); response.getWriter().write(ok); } }`

Hit	Rank	Desc	Type	Violations
?	11	SECXSS2: This use of java/io/PrintWriter.write(Ljava/lang/String;)V could be vulnerable to XSS	XSS_SERVLET