Description
XXL-Job v2.3.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via /xxl-job-admin/jobinfo.
Remediation
References
https://github.com/xuxueli/xxl-job/issues/2836
Related Vulnerabilities
CVE-2023-40037 Vulnerability in maven package org.apache.nifi:nifi-dbcp-base
CVE-2022-29230 Vulnerability in npm package @shopify/hydrogen
CVE-2021-25949 Vulnerability in npm package set-getter
CVE-2019-20174 Vulnerability in maven package org.webjars.npm:auth0-lock
CVE-2021-21292 Vulnerability in maven package org.traccar:traccar