Description
Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload functionality.
Remediation
References
http://www.openwall.com/lists/oss-security/2017/08/16/5
http://www.securityfocus.com/bid/100410
Related Vulnerabilities
CVE-2020-7642 Vulnerability in npm package lazysizes
CVE-2023-42795 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2020-2269 Vulnerability in maven package org.jenkins-ci.plugins:chosen-views-tabbar
CVE-2021-38542 Vulnerability in maven package org.apache.james:james-server
CVE-2021-41165 Vulnerability in maven package org.webjars.npm:ckeditor4