178 matches found
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
PowerJob is affected by an incorrect access control vulnerability in version 4.3.2 and earlier. The issue allows remote attackers to disclose sensitive information by querying the appId parameter on the /container/list interface. Public references (including Red Hat and Veracode analyses) describ...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
Inventory Management System is an inventory management system. A SQL injection vulnerability exists in Inventory Management System version 1.0, which originates from a SQL injection via the up_pid parameter on the edit_sell.php page. No details of the vulnerability are available at this time.
PowerJob Command Execution Vulnerability...
Microsoft SharePoint 安全漏洞
PowerJob Command Execution Vulnerability...
PowerJob Command Execution Vulnerability
PowerJob is an open source distributed computing and job scheduling framework that allows developers to easily schedule tasks in their applications. A command execution vulnerability exists in PowerJob version 4.3.3, which stems from the parameter instanceId of /instance/detail failing to properl...
dev.macula.boot:macula-boot-starter-powerjob (=5.0.0-RC2), io.github.shuigedeng:taotao-cloud-starter-job-powerjob (>=2023.02 <=2023.08) +21 more potentially affected by CVE-2023-37754 via tech.powerjob:powerjob-common (>=4.0.0 <=4.3.3)
tech.powerjob:powerjob-common MAVEN version =4.0.0, =2023.02, =2.0.0, =2.0.0, =4.0.0, =1.1.0, =4.3.1, =4.3.0, =4.3.0, =4.3.0, =4.3.1, =4.3.1, =4.3.1, =4.3.1, =4.3.1, =4.3.3 and more Source cves: CVE-2023-37754 Source advisory: OSV:GHSA-2H26-QFXM-R3PQ...
GHSA-2H26-QFXM-R3PQ Code injection in PowerJob
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
Code injection in PowerJob
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
CVE-2023-37754
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
CVE-2023-37754
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
CVE-2023-37754
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
Command injection
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
CVE-2023-37754
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
PowerJob 安全漏洞
PowerJob is an open source distributed computing and job scheduling framework that allows developers to easily schedule tasks in their applications. A command execution vulnerability exists in PowerJob version 4.3.3, which stems from the parameter instanceId of /instance/detail failing to properl...
PT-2023-26094 · Powerjob · Powerjob
Name of the Vulnerable Software and Affected Versions: PowerJob version 4.3.3 Description: A remote command execution issue was discovered, allowing exploitation via the instanceId parameter at the "/instance/detail" API endpoint. Recommendations: For PowerJob version 4.3.3, consider restricting...
CVE-2023-37754
PowerJob v4.3.3 was discovered to contain a remote command execution RCE vulnerability via the instanceId parameter at /instance/detail...
CVE-2023-37754
CVE-2023-37754 affects PowerJob v4.3.3. The vulnerability is a remote command execution (RCE) via the instanceId parameter in the /instance/detail endpoint. The root cause is improper validation/filtering of constructor commands in the instanceId input, enabling arbitrary code/command execution o...
Exploit for Incorrect Default Permissions in Powerjob
CVE-2023-29923 1. Prepare a url.txt file,...
Remote Code Execution (RCE)
powerjob-server-core is vulnerable to Remote Code Execution RCE. The vulnerability exists because the library fails to implement access control, which allows an attacker to inject and execute malicious code through the template generator...