Description

This Spring web application is configured to disable the automatic HTML escaping for Spring tags which may lead to Cross-Site Scripting vulnerabilities.

Remediation

It's recommended to enable HTML escaping for Spring tags. This can be configured from web.xml like in the example below: 


    ...
	
		defaultHtmlEscape
		true
    
    ...
At page level, it is defined as a tag-declaration.

References

Class HtmlEscapeTag

Related Vulnerabilities

ASP.NET login credentials stored in plain text

Custom error pages are not configured

RethinkDB administrative interface publicly exposed

PHP errors enabled

Cookies without HttpOnly flag set

Severity

Medium

Classification

CWE-16 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Configuration