Springbootmovie Project: >> Springbootmovie Security Vulnerabilities
In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability
CVSS Score
7.2
EPSS Score
0.004
Published
2022-05-03
In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-05-03