CVE-2023-27087, GHSA-jhjm-5xjg-mpqp
maven/com.xuxueli/xxl-job
Xuxueli xxl-job allows attacker to obtain sensitive information via the pageList parameter
Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter.
All versions starting from 2.2.0 up to 2.3.1
Upgrade to version 2.4.0 or above.
2023-03-22
source |