CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/05/24 5:27 p.m.•12 views

GHSA-PQQJ-299W-WF53 xxl-job Multiple cross-site scripting (XSS) vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in xxl-job v2.2.0 allow remote attackers to inject arbitrary web script or HTML via 1 AppName and 2AddressList parameter in JobGroupController.java file...

6.1CVSS6.1AI score0.00723EPSS

Exploits1References4

Github Security Blog•added 2022/05/24 5:27 p.m.•16 views

xxl-job Multiple cross-site scripting (XSS) vulnerabilities

6.1CVSS6AI score0.00723EPSS

Exploits1References5Affected Software1

NVD•added 2020/09/03 5:15 p.m.•7 views

CVE-2020-23814

6.1CVSS6.1AI score0.00723EPSS

Exploits1References2

OSV•added 2020/09/03 5:15 p.m.•14 views

CVE-2020-23814

6.1CVSS5.9AI score

Exploits0References2

CVE•added 2020/09/03 4:58 p.m.•59 views

CVE-2020-23814

XXL-JOB v2.2.0 contains stored XSS vulnerabilities (CVE-2020-23814) exploitable via AppName and AddressList in JobGroupController.java. Nuclei templates confirm the issue and specify the impact as arbitrary script injection by an authenticated user, with potential session cookie theft or administ...

6.1CVSS6AI score0.00723EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by