Lucash-Dev

**Name of the Vulnerable Software and Affected Versions** Play Framework versions 2.6.0 through 2.8.2 **Description** The issue concerns data amplification that can occur when an application accepts multipart/form-data JSON input. **Recommendations** For Play Framework versions 2.6.0 through 2.8.2, consider restricting the acceptance of multipart/form-data JSON input to minimize the risk of data amplification until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Play Framework versions 2.6.0 through 2.8.2 **Description** The issue is caused by unbounded recursion during parsing of crafted JSON documents, leading to stack consumption. **Recommendations** For Play Framework versions 2.6.0 through 2.8.2, update to a version that contains a fix for this issue to prevent stack consumption due to unbounded recursion during JSON parsing.