8.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.6%
A Cross-Site Request Forgery (CSRF) in XXL-Job v2.3.0 allows attackers to arbitrarily create administrator accounts via the component /gaia-job-admin/user/add.
github.com/xuxueli/xxl-job/issues/2821