springboot-manager v1.6 is vulnerable to Arbitrary File Upload. The system does not filter the suffixes of uploaded files.
5.4CVSS
5.5AI Score
0.0004EPSS
5.4CVSS
5.3AI Score
0.0004EPSS
springboot-manager v1.6 is vulnerable to Cross Site Scripting (XSS) via /sysContent/add.
5.4CVSS
5.3AI Score
0.0004EPSS
5.4CVSS
5.3AI Score
0.0004EPSS