Back to search
CVE-2018-1230
Published: Mar 21, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
Pivotal Spring Batch Admin, all versions, does not contain cross site request forgery protection. A remote unauthenticated user could craft a malicious site that executes requests to Spring Batch Admin. This issue has not been patched because Spring Batch Admin has reached end of life.
| Vendor | Product | Versions |
|---|---|---|
Spring by Pivotal | Spring Batch Admin | affected All |
Weaknesses (CWE)
References
https://pivotal.io/security/cve-2018-1230
x_refsource_CONFIRM
103463
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now