Springbootmovie Project Springbootmovie — known CVE vulnerabilities
Every CVE whose affected-product data names Springbootmovie Project Springbootmovie, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-29001 — CVSS 7.2 (high): In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability
CVE-2022-28588 — CVSS 5.4 (medium): In SpringBootMovie <=1.2 when adding movie names, malicious code can be stored because there are no filtering parameters, resulting in…