Shodan
Vulnerabilities
Vulnerable Software
Xuxueli:  >> Xxl-Job  >> 2.3.0  Security Vulnerabilities
CVE-2022-36157
XXL-JOB all versions as of 11 July 2022 are vulnerable to Insecure Permissions resulting in the ability to execute admin function with low Privilege account.
CVSS Score
8.8
EPSS Score
0.195
Published
2022-08-19
CVE-2022-29770
XXL-Job v2.3.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via /xxl-job-admin/jobinfo.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-03
CVE-2022-29002
A Cross-Site Request Forgery (CSRF) in XXL-Job v2.3.0 allows attackers to arbitrarily create administrator accounts via the component /gaia-job-admin/user/add.
CVSS Score
8.8
EPSS Score
0.001
Published
2022-05-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved