Lucene search
K

5 matches found

OSV
OSV
added 2026/04/07 9:32 p.m.2 views

GHSA-4FP2-3XGG-JG4W PowerJob vulnerable to SQL injection

A vulnerability was identified in PowerJob 5.1.0/5.1.1/5.1.2. Impacted is an unknown function of the file powerjob-server/powerjob-server-starter/src/main/java/tech/powerjob/server/web/controller/InstanceController.java of the component detailPlus Endpoint. The manipulation of the argument...

7.3CVSS6.9AI score0.00269EPSS
Exploits0References7
Snyk
Snyk
added 2026/04/07 8:13 p.m.1 views

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection via the customQuery argument in the detailPlus endpoint. An attacker can execute arbitrary SQL commands by supplying crafted input remotely. Remediation There is no fixed version for tech.powerjob:powerjob-server-starter...

7.5CVSS6.2AI score0.00269EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/04/07 8:12 p.m.9 views

tech.powerjob:powerjob-server-starter (>=4.3.1 <=5.1.1) potentially affected by CVE-2026-5739 via tech.powerjob:powerjob-server-core (>=4.3.1 <=5.1.1)

tech.powerjob:powerjob-server-core MAVEN version =4.3.1, =4.3.1, =5.1.1 Source cves: CVE-2026-5739 Source advisory: SNYK:JAVA-TECHPOWERJOB-15928844...

7.5CVSS7.1AI score0.00388EPSS
Exploits0
Snyk
Snyk
added 2025/10/10 7:41 p.m.16 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via multiple APIs in OpenAPIController. An attacker can gain unauthorized access to sensitive information by sending crafted requests to the endpoints. Remediation There is no fixed version for...

7.5CVSS6.8AI score0.00426EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/10 6:43 p.m.2 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the list function in UserInfoController.java. An attacker can access sensitive user information by sending unauthorized requests remotely. Remediation There is no fixed version for...

6.9CVSS5.7AI score0.01013EPSS
Exploits0References2
Rows per page
Query Builder