Headline
GHSA-c352-x843-ggpq: XXL-JOB vulnerable to Server-Side Request Forgery
xxl-job <= 2.4.0 has a Server-Side Request Forgery (SSRF) vulnerability, which causes low-privileged users to control executor to RCE.
XXL-JOB vulnerable to Server-Side Request Forgery
Moderate severity GitHub Reviewed Published Feb 8, 2024 to the GitHub Advisory Database • Updated Feb 8, 2024