Description
XXL-Job v2.3.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via /xxl-job-admin/jobinfo.
Remediation
References
https://github.com/xuxueli/xxl-job/issues/2836
Related Vulnerabilities
CVE-2023-34659 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-parent
CVE-2022-22984 Vulnerability in npm package snyk-mvn-plugin
CVE-2021-39133 Vulnerability in maven package org.rundeck:rundeck
CVE-2021-23337 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash
CVE-2020-28052 Vulnerability in maven package org.bouncycastle:bcprov-jdk15on