11 matches found
XXL-JOB 安全漏洞
XXL-JOB is a distributed task scheduling platform developed by xuxueli. Versions of XXL-JOB 3.3.2 and earlier contain security vulnerabilities. These vulnerabilities stem from improper control of resource identifiers due to the parameter logId in the function logDetailCat of the Execution Log...
XXL-JOB 安全漏洞
XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A security vulnerability exists in XXL-JOB 3.1.1 and earlier versions, which stems from incorrect manipulation of parameter IDs, resulting in improper control of resource identifiers...
xxl-job 命令注入漏洞
XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A command injection vulnerability exists in xxl-job 3.1.1 and earlier versions, which stems from a misuse of the commandJobHandler function leading to os command injection attacks...
SnailJob 代码问题漏洞
SnailJob is a flexible, reliable and efficient distributed task retrying and task scheduling platform from aizuda open source. A code issue vulnerability exists in SnailJob version 1.4.0, which stems from a deserialization vulnerability...
XXL-JOB 注入漏洞
XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community. XXL-JOB 2.4.1 and earlier versions exist injection vulnerability, the vulnerability stems from the file com/xxl/job/core/util/JdkSerializeTool.java has a template injection...
XXL-JOB Security Vulnerability
XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xue Li XXL-JOB community. A security vulnerability exists in XXL-JOB xxl-job-admin version 2.4.0, which stems from a cross-site scripting XSS vulnerability in component /xxl-job-admin/joblog/logDetailPage...
XXL-JOB code issue vulnerability
XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community.A security vulnerability exists in versions prior to XXL-JOB v2.3.1, which stems from a vulnerability found via the component /admin/controller/JobLogController.java containing...
XXL-JOB authorization issue vulnerability
XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community. all versions of XXL-JOB released after July 11, 2022 have an authorization issue vulnerability that stems from its insecure privilege control, which could be exploited by an attacker ...
Flower Denial of Service Vulnerability
Flower is a Web-based, real-time monitoring and management of Celery distributed task queues. A denial of service vulnerability exists in the May 2, 2022 version of Flower and prior versions, which stems from being vulnerable to OAuth authentication bypass. An attacker can use this vulnerability ...
Celery Command Injection Vulnerability
celery is an open source package for distributed task queues. A command injection vulnerability exists in celery versions prior to 5.2.2, which can be exploited by an attacker to access or somehow manipulate metadata in the celery backend, triggering a stored command injection vulnerability...
Weak password vulnerability in hera task scheduling system
hera Task Scheduler is a distributed task scheduling system based on a rewrite of zeus. A weak password vulnerability exists in hera Task Scheduler, which can be exploited by an attacker to obtain sensitive information...