Back to search
CVE-2018-1229
Published: Mar 21, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
Pivotal Spring Batch Admin, all versions, contains a stored XSS vulnerability in the file upload feature. An unauthenticated malicious user with network access to Spring Batch Admin could store an arbitrary web script that would be executed by other users. This issue has not been patched because Spring Batch Admin has reached end of life.
| Vendor | Product | Versions |
|---|---|---|
Spring by Pivotal | Spring Batch Admin | affected All |
Weaknesses (CWE)
References
103462
vdb-entry
x_refsource_BID
https://pivotal.io/security/cve-2018-1229
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now