Vulnerabilities > Xuxueli > XXL JOB > 1.8.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-08 | CVE-2024-24113 | Server-Side Request Forgery (SSRF) vulnerability in Xuxueli Xxl-Job xxl-job =< 2.4.1 has a Server-Side Request Forgery (SSRF) vulnerability, which causes low-privileged users to control executor to RCE. | 8.8 |
| 2022-11-17 | CVE-2022-43183 | Server-Side Request Forgery (SSRF) vulnerability in Xuxueli Xxl-Job XXL-Job before v2.3.1 contains a Server-Side Request Forgery (SSRF) via the component /admin/controller/JobLogController.java. | 8.8 |
| 2022-08-19 | CVE-2022-36157 | Improper Privilege Management vulnerability in Xuxueli Xxl-Job XXL-JOB all versions as of 11 July 2022 are vulnerable to Insecure Permissions resulting in the ability to execute admin function with low Privilege account. | 8.8 |