Description
PowerJob v4.3.3 was discovered to contain a remote command execution (RCE) vulnerability via the instanceId parameter at /instance/detail.
Remediation
References
https://github.com/PowerJob/PowerJob/
https://github.com/PowerJob/PowerJob/issues/675
https://novysodope.github.io/2023/07/02/100/
Related Vulnerabilities
CVE-2020-7688 Vulnerability in npm package mversion
CVE-2023-45857 Vulnerability in maven package org.webjars.npm:axios
CVE-2023-34455 Vulnerability in maven package org.xerial.snappy:snappy-java
CVE-2017-18355 Vulnerability in npm package rendertron-middleware
CVE-2021-37694 Vulnerability in npm package @asyncapi/java-spring-cloud-stream-template