An issue was discovered in hsweb 3.0.4. It is a reflected XSS vulnerability due to the absence of type parameter checking in FlowableModelManagerController.java.
CPE | Name | Operator | Version |
---|---|---|---|
hsweb-framework | eq | 3.0.0-RC | |
hsweb-framework | eq | 3.0.0 | |
hsweb-framework | eq | 3.0.0-SNAPSHOT | |
hsweb-framework | eq | 3.0.1 | |
hsweb-framework | eq | V2.2.1 |