6 matches found
CVE-2026-7305
A weakness has been identified in Xuxueli xxl-job up to 3.3.2. The affected element is the function triggerJob of the file xxl-job-admin/src/main/java/com/xxl/job/admin/service/impl/XxlJobServiceImpl.java of the component trigger Endpoint. This manipulation of the argument addressList causes...
EUVD-2026-26149
A weakness has been identified in Xuxueli xxl-job up to 3.3.2. The affected element is the function triggerJob of the file xxl-job-admin/src/main/java/com/xxl/job/admin/service/impl/XxlJobServiceImpl.java of the component trigger Endpoint. This manipulation of the argument addressList causes...
CVE-2026-7305 Xuxueli xxl-job trigger Endpoint XxlJobServiceImpl.java triggerJob server-side request forgery
A weakness has been identified in Xuxueli xxl-job up to 3.3.2. The affected element is the function triggerJob of the file xxl-job-admin/src/main/java/com/xxl/job/admin/service/impl/XxlJobServiceImpl.java of the component trigger Endpoint. This manipulation of the argument addressList causes...
CVE-2026-7305
CVE-2026-7305 affects Xuxueli xxl-job up to 3.3.2, specifically the triggerJob function in XxlJobServiceImpl.java (trigger Endpoint). The issue arises from manipulating the argument addressList, leading to server-side request forgery (SSRF). It can be triggered remotely, and a public exploit repo...
XXL-JOB 代码问题漏洞
XXL-JOB is a distributed task scheduling platform developed by Xuxue Li xuxueli. Versions of XXL-JOB 3.3.2 and earlier have code vulnerabilities. These vulnerabilities stem from operations on the parameter addressList in the function triggerJob of the trigger Endpoint. This operation allows for...
CVE-2025-13250
The CVE-2025-13250 vulnerability affects WeiYe-Jing datax-web (up to 2.1.2), specifically the Job Handler’s remove, update, pause, start, and triggerJob functions. The described flaw causes improper access controls and can be exploited remotely; multiple sources confirm public exploitation vector...