lkmc2/SpringBootMovie
GitHub
Releases3
Frequency1 week 4 days
Last Release
Stars165
基于Spring Boot的电影网站
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 7.2 HIGH | 6.5 MEDIUM | ||
In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability | |||
| 5.4 MEDIUM | 3.5 LOW | ||
In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in stored XSS. | |||