Description
xxl-job-admin 2.4.0 is vulnerable to Cross Site Scripting (XSS) via /xxl-job-admin/joblog/logDetailPage.
Remediation
References
https://github.com/xuxueli/xxl-job/issues/3329
Related Vulnerabilities
CVE-2020-7760 Vulnerability in maven package org.apache.marmotta.webjars:codemirror
CVE-2017-16167 Vulnerability in npm package yyooopack
CVE-2023-43642 Vulnerability in maven package org.xerial.snappy:snappy-java
CVE-2012-1833 Vulnerability in maven package org.grails:grails-plugin-controllers
CVE-2020-28500 Vulnerability in maven package org.webjars.npm:lodash