Per http://seclists.org/fulldisclosure/2014/Aug/48 there is a potential MITM vulnerability with HttpClient prior to versions 4.3.5.
I am running SmartGWT Pro 3.1 that came with 'commons-httpclient-3.1.jar'. Do you know of any potential issue with us replacing that jar with the newest version of HttpClient?
Additionally, today I downloaded the SmartGWT 5.0 Eval and noticed that you still have an older version (4.3.3) in the distribution. You should probably update the jar.
I am running SmartGWT Pro 3.1 that came with 'commons-httpclient-3.1.jar'. Do you know of any potential issue with us replacing that jar with the newest version of HttpClient?
Additionally, today I downloaded the SmartGWT 5.0 Eval and noticed that you still have an older version (4.3.3) in the distribution. You should probably update the jar.