Description
Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload functionality.
Remediation
References
http://www.openwall.com/lists/oss-security/2017/08/16/5
http://www.securityfocus.com/bid/100410
Related Vulnerabilities
CVE-2019-10414 Vulnerability in maven package de.wellnerbou.jenkins:git-changelog
CVE-2020-15095 Vulnerability in npm package npm
CVE-2020-2221 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2020-2300 Vulnerability in maven package org.jenkins-ci.plugins:active-directory
CVE-2020-26945 Vulnerability in maven package org.mybatis:mybatis