Description
XXL-Job before v2.3.1 contains a Server-Side Request Forgery (SSRF) via the component /admin/controller/JobLogController.java.
Remediation
References
https://github.com/xuxueli/xxl-job/issues/3002
Related Vulnerabilities
CVE-2023-3432 Vulnerability in maven package net.sourceforge.plantuml:plantuml
CVE-2021-41248 Vulnerability in npm package graphiql
CVE-2017-16093 Vulnerability in npm package cyber-js
CVE-2019-10746 Vulnerability in npm package mixin-deep
CVE-2022-2390 Vulnerability in maven package com.google.android.gms:play-services-basement