dev.macula.boot:macula-boot-starter-powerjob (=5.0.0-RC2), io.github.dudiao:powerjob-remote-smart-http (>=0.0.3 <=0.0.4) +59 more potentially affected by CVE-2025-14518 via tech.powerjob:powerjob-common (>=4.0.0 <=5.1.2)

tech.powerjob:powerjob-common MAVEN version =4.0.0, =0.0.3, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.6.1 and more Source cves: CVE-2025-14518 Source advisory: SNYK:JAVA-TECHPOWERJOB-14401157...

CVE-2025-14518 PowerJob Network Request PingPongUtils.java checkConnectivity server-side request forgery

A vulnerability was identified in PowerJob up to 5.1.2. This vulnerability affects the function checkConnectivity of the file src/main/java/tech/powerjob/common/utils/net/PingPongUtils.java of the component Network Request Handler. The manipulation of the argument targetIp/targetPort leads to...

CVE-2025-11581

A security vulnerability has been detected in PowerJob up to 5.1.2. This vulnerability affects unknown code of the file /openApi/runJob of the component OpenAPIController. Such manipulation leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed publicl...

CVE-2025-11580

PowerJob up to version 5.1.2 contains broken access control in the /user/list function, allowing remote unauthorized access. Multiple sources (NVD, Red Hat, CIRCL, nuclei template, PTSecurity, CNNVD, CVE CVE-2025-11580) describe that the vulnerability enables remote exploitation with public explo...

PT-2025-41589

Name of the Vulnerable Software and Affected Versions PowerJob versions through 5.1.2 Description A security issue has been identified in PowerJob. The problem relates to missing authorization within the /openApi/runJob file of the OpenAPIController component. This allows for remote attacks. The...

PowerJob 安全漏洞

PowerJob is an open source distributed computing and job scheduling framework from PowerJob Open Source that allows developers to easily schedule tasks in their applications. A security vulnerability exists in PowerJob 5.1.2 and earlier versions, which stems from a lack of authorization for the...

EUVD-2023-1263

Malicious code in bioql PyPI...

EUVD-2023-1357

Malicious code in bioql PyPI...

CVE-2020-28865

An issue was discovered in PowerJob through 3.2.2, allows attackers to change arbitrary user passwords via the id parameter to /appinfo/save...

PowerJob Access Control Error Vulnerability (CNVD-2023-32767)

PowerJob is an open source distributed computing and job scheduling framework that allows developers to easily schedule tasks in their applications. An Access Control Error vulnerability exists in PowerJob version V4.3.1 that stems from improper access control. An attacker could exploit the...