Description
xxl-job-admin 2.4.0 is vulnerable to Cross Site Scripting (XSS) via /xxl-job-admin/joblog/logDetailPage.
Remediation
References
https://github.com/xuxueli/xxl-job/issues/3329
Related Vulnerabilities
CVE-2022-40151 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2022-29078 Vulnerability in npm package ejs
CVE-2021-23416 Vulnerability in npm package curly-bracket-parser
CVE-2022-0686 Vulnerability in npm package url-parse
CVE-2016-10707 Vulnerability in maven package org.webjars.npm:jquery