pkg:maven/com.xuxueli/xxl-job-core
Type
maven
Namespace
com.xuxueli
Name
xxl-job-core
Known advisories, vulnerabilities and fixes for com.xuxueli/xxl-job-core package.
Critical
1
High
1
Moderate
2
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.4.0 |
CVE-2024-3366
|
MAVEN:GHSA-2V42-XP3J-47M4 | Xuxueli xxl-job template injection vulnerability | low |
2024-04-06T12:30:56
(5 months ago) |
|
Affected | < 2.3.1 |
CVE-2022-43183
|
MAVEN:GHSA-83W4-X5W9-HF4H | XXL-JOB vulnerable to Server-Side Request Forgery (SSRF) | high |
2022-11-17T21:30:49
(22 months ago) |
|
Fixed | = 2.3.1 |
CVE-2022-43183
|
MAVEN:GHSA-83W4-X5W9-HF4H | XXL-JOB vulnerable to Server-Side Request Forgery (SSRF) | high |
2022-11-17T21:30:49
(22 months ago) |
|
Affected | <= 2.4.1 |
CVE-2024-42681
|
MAVEN:GHSA-CPFP-M5QW-C4R3 | Improper Preservation of Permissions in xxl-job | moderate |
2024-08-15T18:31:51
(4 weeks ago) |
|
Affected | <= 2.2.0 |
CVE-2022-40929
|
MAVEN:GHSA-M54F-RP6R-RRRM | XXL-JOB contains a Command execution vulnerability in background tasks | critical |
2022-09-29T00:00:22
(23 months ago) |
|
Affected | < 2.3.0 |
CVE-2020-29204
|
MAVEN:GHSA-WC73-W5R9-X9PC | Cross-site Scripting in XXL-JOB | moderate |
2021-10-12T16:41:36
(2 years ago) |
|
Fixed | = 2.3.0 |
CVE-2020-29204
|
MAVEN:GHSA-WC73-W5R9-X9PC | Cross-site Scripting in XXL-JOB | moderate |
2021-10-12T16:41:36
(2 years ago) |