CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28588

In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.1%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2022-28588

Springbootmovie Project » Springbootmovie » Version: 1.0

cpe:2.3:a:springbootmovie_project:springbootmovie:1.0
Springbootmovie Project » Springbootmovie » Version: 1.1

cpe:2.3:a:springbootmovie_project:springbootmovie:1.1
Springbootmovie Project » Springbootmovie » Version: 1.2

cpe:2.3:a:springbootmovie_project:springbootmovie:1.2

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved