CVE-2023-48089
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in maven/com.xuxueli/xxl-job-admin
Identifiers
GHSA-x98f-2rgf-qwqh, CVE-2023-48089
Package Slug
maven/com.xuxueli/xxl-job-admin
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
xxl-job-admin 2.4.0 is vulnerable to Remote Code Execution (RCE) via /xxl-job-admin/jobcode/save.
Affected Versions
All versions up to 2.4.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-11-16
| source |