Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/08/22 11:23 p.m.7 views

CVE-2025-9263

A vulnerability has been found in Xuxueli xxl-job up to 3.1.1. Affected by this vulnerability is the function getJobsByGroup of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java. Such manipulation of the argument jobGroup leads to improper control of resource identifiers...

5.3CVSS7.3AI score0.00289EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2025/08/21 12:30 a.m.19 views

xxl-job Vulnerable to Resource Injection and Authorization Bypass Through User-Controlled Key

A vulnerability has been found in Xuxueli xxl-job up to 3.1.1. Affected by this vulnerability is the function getJobsByGroup of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java. Such manipulation of the argument jobGroup leads to improper control of resource identifiers...

5.3CVSS5.5AI score0.00289EPSS
Exploits1References7Affected Software1
Snyk
Snyk
added 2025/08/21 12:30 a.m.7 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key in the getJobsByGroup function of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java when handling the jobGroup argument. An attacker can gain unauthorized access ...

5.3CVSS5.8AI score0.00289EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/08/20 11:2 p.m.17 views

CVE-2025-9263 Xuxueli xxl-job JobLogController.java getJobsByGroup resource injection

A vulnerability has been found in Xuxueli xxl-job up to 3.1.1. Affected by this vulnerability is the function getJobsByGroup of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java. Such manipulation of the argument jobGroup leads to improper control of resource identifiers...

5.3CVSS0.00289EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.11 views

PT-2025-34168 · Xuxueli · Xxl-Job

Name of the Vulnerable Software and Affected Versions: Xuxueli xxl-job versions up to 3.1.1 Description: A vulnerability exists in the getJobsByGroup function located in the /src/main/java/com/xxl/job/admin/controller/JobLogController.java file. Manipulation of the jobGroup argument results in...

5.3CVSS4.5AI score0.00289EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2014/10/03 12:0 a.m.41 views

Fedora 19 : cups-1.6.4-10.fc19 (2014-9703)

Upstream patches have been applied to prevent long-running Get-Jobs operations preventing other requests from being handled, and to fix the order of completed jobs in Get-Jobs responses. This update fixes a security flaw potentially leading to a disclosure of information. Note that Tenable Networ...

1.5CVSS7.4AI score0.00379EPSS
Exploits0References5
Rows per page
Query Builder