Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 via file upload functionality.

Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 via file upload functionality.

CVE-2017-12882 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload functionality.

Learn more about our User Device Pen Test.