Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/04/28 12:0 a.m.13 views

XXL-JOB 安全漏洞

XXL-JOB is a distributed task scheduling platform developed by xuxueli. Versions of XXL-JOB 3.3.2 and earlier contain security vulnerabilities. These vulnerabilities stem from improper control of resource identifiers due to the parameter logId in the function logDetailCat of the Execution Log...

6.3CVSS5.8AI score0.00418EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.24 views

XXL-JOB 安全漏洞

XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A security vulnerability exists in XXL-JOB 3.1.1 and earlier versions, which stems from incorrect manipulation of parameter IDs, resulting in improper control of resource identifiers...

5.5CVSS5.5AI score0.00314EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/18 12:0 a.m.6 views

xxl-job 命令注入漏洞

XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A command injection vulnerability exists in xxl-job 3.1.1 and earlier versions, which stems from a misuse of the commandJobHandler function leading to os command injection attacks...

8.8CVSS6.8AI score0.05421EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/22 12:0 a.m.5 views

SnailJob 代码问题漏洞

SnailJob is a flexible, reliable and efficient distributed task retrying and task scheduling platform from aizuda open source. A code issue vulnerability exists in SnailJob version 1.4.0, which stems from a deserialization vulnerability...

8.8CVSS6.5AI score0.0065EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/04/06 12:0 a.m.8 views

XXL-JOB 注入漏洞

XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community. XXL-JOB 2.4.1 and earlier versions exist injection vulnerability, the vulnerability stems from the file com/xxl/job/core/util/JdkSerializeTool.java has a template injection...

9.8CVSS4.8AI score0.00945EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/11/15 12:0 a.m.6 views

XXL-JOB Security Vulnerability

XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xue Li XXL-JOB community. A security vulnerability exists in XXL-JOB xxl-job-admin version 2.4.0, which stems from a cross-site scripting XSS vulnerability in component /xxl-job-admin/joblog/logDetailPage...

5.4CVSS5.8AI score0.00399EPSS
Exploits1References2
CNVD
CNVD
added 2022/11/21 12:0 a.m.27 views

XXL-JOB code issue vulnerability

XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community.A security vulnerability exists in versions prior to XXL-JOB v2.3.1, which stems from a vulnerability found via the component /admin/controller/JobLogController.java containing...

8.8CVSS3.5AI score0.01602EPSS
Exploits1References1
CNVD
CNVD
added 2022/08/23 12:0 a.m.48 views

XXL-JOB authorization issue vulnerability

XXL-JOB is a distributed task scheduling platform based on the java language from the Xu Xueli XXL-JOB community. all versions of XXL-JOB released after July 11, 2022 have an authorization issue vulnerability that stems from its insecure privilege control, which could be exploited by an attacker ...

8.8CVSS4.9AI score0.012EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.21 views

Flower Denial of Service Vulnerability

Flower is a Web-based, real-time monitoring and management of Celery distributed task queues. A denial of service vulnerability exists in the May 2, 2022 version of Flower and prior versions, which stems from being vulnerable to OAuth authentication bypass. An attacker can use this vulnerability ...

8.6CVSS8.4AI score0.00997EPSS
Exploits1References1
CNVD
CNVD
added 2021/12/30 12:0 a.m.33 views

Celery Command Injection Vulnerability

celery is an open source package for distributed task queues. A command injection vulnerability exists in celery versions prior to 5.2.2, which can be exploited by an attacker to access or somehow manipulate metadata in the celery backend, triggering a stored command injection vulnerability...

7.5CVSS7.6AI score0.03877EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/16 12:0 a.m.14 views

Weak password vulnerability in hera task scheduling system

hera Task Scheduler is a distributed task scheduling system based on a rewrite of zeus. A weak password vulnerability exists in hera Task Scheduler, which can be exploited by an attacker to obtain sensitive information...

6.9AI score
Exploits0
Rows per page
Query Builder