CVE-2018-1229
N/A
N/A
Summary
Pivotal Spring Batch Admin, all versions, contains a stored XSS vulnerability in the file upload feature. An unauthenticated malicious user with network access to Spring Batch Admin could store an arbitrary web script that would be executed by other users. This issue has not been patched because Spring Batch Admin has reached end of life.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Spring by Pivotal | Spring Batch Admin | All | affected |
Weaknesses
- CWE-79: CWE-79 - Cross-site Scripting (XSS) - Stored
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.