Vulnerabilities > Xuxueli > XXL JOB > 2.3.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-08 | CVE-2024-24113 | Server-Side Request Forgery (SSRF) vulnerability in Xuxueli Xxl-Job xxl-job =< 2.4.1 has a Server-Side Request Forgery (SSRF) vulnerability, which causes low-privileged users to control executor to RCE. | 8.8 |
2023-03-21 | CVE-2023-27087 | Unspecified vulnerability in Xuxueli Xxl-Job 2.2.0/2.3.0/2.3.1 Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter. | 7.5 |
2023-02-04 | CVE-2023-0674 | Cross-Site Request Forgery (CSRF) vulnerability in Xuxueli Xxl-Job 2.3.1 A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. | 6.5 |