pkg:maven/com.xuxueli/xxl-job
Type
maven
Namespace
com.xuxueli
Name
xxl-job
Known advisories, vulnerabilities and fixes for com.xuxueli/xxl-job package.
High
6
Moderate
5
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.4.0 |
CVE-2023-26120
|
MAVEN:GHSA-4J2P-X79M-JCJ8 | XXL-JOB vulnerable to Cross-site Scripting | moderate |
2023-04-10T06:30:16
(17 months ago) |
|
Affected | <= 2.3.1 |
CVE-2022-36157
|
MAVEN:GHSA-7QQ9-9G2W-56F9 | Improper Privilege Management in com.xuxueli:xxl-job | high |
2022-08-20T00:00:30
(2 years ago) |
|
Fixed | = 2.4.0 |
CVE-2022-36157
|
MAVEN:GHSA-7QQ9-9G2W-56F9 | Improper Privilege Management in com.xuxueli:xxl-job | high |
2022-08-20T00:00:30
(2 years ago) |
|
Affected | <= 2.3.1 |
CVE-2022-29770
|
MAVEN:GHSA-8GVG-F6QP-39WX | Cross site scripting in XXL-job | moderate |
2022-06-04T00:00:25
(2 years ago) |
|
Affected | <= 2.4.1 |
CVE-2023-33779
|
MAVEN:GHSA-9MMJ-64JH-PH9C | Privilege escalation in XXL-Job | high |
2023-05-26T18:30:21
(15 months ago) |
|
Affected | <= 2.4.0 |
CVE-2024-24113
|
MAVEN:GHSA-C352-X843-GGPQ | XXL-JOB vulnerable to Server-Side Request Forgery | moderate |
2024-02-08T15:30:27
(7 months ago) |
|
Affected | >= 2.2.0, <= 2.3.1 |
CVE-2023-27087
|
MAVEN:GHSA-JHJM-5XJG-MPQP | Xuxueli xxl-job allows attacker to obtain sensitive information via the pageList parameter | high |
2023-03-21T21:30:19
(18 months ago) |
|
Affected | <= 2.2.0 |
CVE-2020-24922
|
MAVEN:GHSA-JP5R-4X9Q-4VCF | xuxueli xxl-job Cross-Site Request Forgery Vulnerability | high |
2023-08-11T15:30:46
(13 months ago) |
|
Affected | <= 2.2.0 |
CVE-2020-23811
|
MAVEN:GHSA-M5Q9-488R-4RMP | xxl-job sensitive data exposure | high |
2022-05-24T17:27:18
(2 years ago) |
|
Affected | < 2.3.0 |
CVE-2020-23814
|
MAVEN:GHSA-PQQJ-299W-WF53 | xxl-job Multiple cross-site scripting (XSS) vulnerabilities | moderate |
2022-05-24T17:27:18
(2 years ago) |
|
Fixed | = 2.3.0 |
CVE-2020-23814
|
MAVEN:GHSA-PQQJ-299W-WF53 | xxl-job Multiple cross-site scripting (XSS) vulnerabilities | moderate |
2022-05-24T17:27:18
(2 years ago) |
|
Affected | <= 2.3.1 |
CVE-2023-0674
|
MAVEN:GHSA-PV4M-H859-JWMQ | Cross-Site Request Forgery in XXL Job | moderate |
2023-02-04T09:30:20
(19 months ago) |
|
Affected | <= 2.3.0 |
CVE-2022-29002
|
MAVEN:GHSA-V3C9-W6G2-HJG3 | Cross-Site Request Forgery in XXL-Job | high |
2022-05-24T00:00:18
(2 years ago) |