GHSA-c352-x843-ggpq, CVE-2024-24113
maven/com.xuxueli/xxl-job
XXL-JOB vulnerable to Server-Side Request Forgery
xxl-job =< 2.4.1 has a Server-Side Request Forgery (SSRF) vulnerability, which causes low-privileged users to control executor to RCE.
All versions up to 2.4.0
Unfortunately, there is no solution available yet.
2024-02-09
source |