Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-9mmj-64jh-ph9c: Privilege escalation in XXL-Job

A lateral privilege escalation vulnerability in XXL-Job v2.4.1 allows users to execute arbitrary commands on another user’s account via a crafted POST request to the component /jobinfo/.

ghsa
#vulnerability#git

Privilege escalation in XXL-Job

Moderate severity GitHub Reviewed Published May 26, 2023 to the GitHub Advisory Database • Updated May 26, 2023

Related news

CVE-2023-33779: GitHub - xuxueli/xxl-job: A distributed task scheduling framework.(分布式任务调度平台XXL-JOB)

A lateral privilege escalation vulnerability in XXL-Job v2.4.1 allows users to execute arbitrary commands on another user's account via a crafted POST request to the component /jobinfo/.