178 matches found
CVE-2020-28865
An issue was discovered in PowerJob through 3.2.2, allows attackers to change arbitrary user passwords via the id parameter to /appinfo/save...
SQL Injection
tech.powerjob, powerjob is vulnerable to SQL injection. The vulnerability is due to improper handling of the version parameter, which allows attackers to manipulate SQL queries...
CVE-2024-44546
Powerjob = 3.20 is vulnerable to SQL injection via the version parameter...
CVE-2024-44546
Powerjob = 3.20 is vulnerable to SQL injection via the version parameter...
PowerJob 安全漏洞
PowerJob is an open source distributed computing and job scheduling framework from PowerJob Open Source that allows developers to easily schedule tasks in their applications. A security vulnerability exists in PowerJob version 3.20 and later, which stems from vulnerability to SQL injection attack...
CVE-2024-44546
PowerJob is affected by a SQL injection vulnerability present in version parameter handling for PowerJob 3.20 and later. The issue is described across multiple sources (NVD/Red Hat/Veracode/CVE lists; PT Security) as a vulnerability in PowerJob >= 3.20 that allows SQL injection via the version...
CVE-2024-44546
Powerjob = 3.20 is vulnerable to SQL injection via the version parameter...
CVE-2024-44546
Powerjob = 3.20 is vulnerable to SQL injection via the version parameter...
PT-2024-31171 · Powerjob · Powerjob
Name of the Vulnerable Software and Affected Versions: Powerjob versions 3.20 and later Description: The issue allows for SQL injection via the version parameter. Recommendations: For Powerjob versions 3.20 and later, at the moment, there is no information about a newer version that contains a fi...
The vulnerability of distributed computing platforms and PowerJob task scheduling systems, related to incorrect default permissions, allows attackers to gain unauthorized access to protected information.
The vulnerability of distributed computing platforms and the PowerJob task scheduling system is related to incorrect default permissions. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
The vulnerability of distributed computing platforms and PowerJob’s task scheduling system, related to lack of access control, allows a intruder to gain unauthorized access to the user/save interface.
The vulnerability of distributed computing platforms and the PowerJob task scheduling system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to the user/save interface...
Information Disclosure
tech.powerjob:powerjob-server-remote is vulnerable to Information Disclosure. The vulnerability exists in the way that PowerJob handles the appId parameter in the /container/list interface. An attacker is able to exploit this vulnerability by sending a specially crafted request to the PowerJob...
Improper Access Control
PowerJob is vulnerable to Incorrect Access Control vulnerability. The vulnerability is due to not applying sufficient authorization checks on the POST /user/save end point. This can lead to an attacker creating users without any permissions...
PowerJob incorrect access control vulnerability
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
GHSA-443M-3FR6-W8WJ PowerJob incorrect access control vulnerability
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
Improper access control
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
PowerJob 安全漏洞
PowerJob is an open source distributed computing and job scheduling framework that allows developers to easily schedule tasks in their applications. A security vulnerability exists in powerjob version 4.3.2 and earlier versions, which stems from the presence of a buggy access control vulnerabilit...