Description
PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution.
Remediation
References
https://github.com/PowerJob/PowerJob/issues/588
https://iotaa.cn/articles/62
Related Vulnerabilities
CVE-2017-17837 Vulnerability in maven package org.apache.deltaspike.modules:jsf-module-project
CVE-2019-0200 Vulnerability in maven package org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol
CVE-2021-32853 Vulnerability in npm package erxes
CVE-2023-45857 Vulnerability in maven package org.webjars.bower:axios
CVE-2018-25031 Vulnerability in maven package org.webjars.bower:swagger-ui