Get ahead
VMware offers training and certification to turbo-charge your progress.
Learn moreSpring Batch Admin does not contain Cross Site Request Forgery (CSRF) protection, which may allow an attacker to craft a malicious site that executes requests to Spring Batch Admin.
Spring Batch Admin:
This vulnerability has not been fixed as Spring Batch Admin has reached its end of life as of January 1, 2018. Spring Cloud Data Flow is the recommended replacement for managing and monitoring Spring Batch jobs going forward.
The issue was identified and responsibly reported by Wen Bin Kong.
To report a security vulnerability for a project within the Spring portfolio, see the Security Policy