7 matches found
EUVD-2023-0765
Malicious code in bioql PyPI...
CVE-2023-0674
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely...
GHSA-PV4M-H859-JWMQ Cross-Site Request Forgery in XXL Job
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely...
Cross-Site Request Forgery in XXL Job
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely...
CVE-2023-0674
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely...
CVE-2023-0674
CVE-2023-0674 affects XXL-JOB 2.3.1. The issue concerns the /user/updatePwd endpoint in the New Password Handler, where a cross-site request forgery (CSRF) can be triggered due to insufficient validation. The vulnerability can be exploited remotely and, per sources, the exploit has been disclosed...
XXL-JOB 跨站请求伪造漏洞
XXL-JOB is a distributed task scheduling platform based on java language from XU Xueli XXL-JOB community. A cross-site request forgery vulnerability exists in XXL-JOB version 2.3.1, which stems from some unknown functionality in the file /user/updatePwd of the component New Password Handler,...