2 matches found
CVE-2022-28588
In SpringBootMovie =1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS...
CVE-2022-28588
CVE-2022-28588 affects SpringBootMovie up to version 1.2, where adding movie names allows stored XSS due to missing input filtering. The issue stems from failure to filter parameters when accepting movie names, enabling injection of malicious code stored in the app. Documented impact: client-side...