Page 2 of 6 results (0.001 seconds)

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload functionality. Una vulnerabilidad de tipo Stored Cross-Site Scripting (XSS) en Spring Batch Admin en versiones anteriores a la 1.3.0 permite a los usuarios autenticados remotos inyectar código JavaScript o HTML arbitrario a través de la función de subida de archivos. • http://www.openwall.com/lists/oss-security/2017/08/16/5 http://www.securityfocus.com/bid/100410 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •