Skip to main content

Springbootmovie

2 CVEs product

Monthly

CVE-2022-29001 HIGH POC This Week

In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Springbootmovie
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-28588 MEDIUM POC This Month

In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Springbootmovie
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
EPSS 1% CVSS 7.2
HIGH POC This Week

In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Springbootmovie
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Springbootmovie
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy