Количество 2
Количество 2
CVE-2023-0674
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220196.
GHSA-pv4m-h859-jwmq
Cross-Site Request Forgery in XXL Job
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-0674 A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220196. | CVSS3: 4.3 | 0% Низкий | около 3 лет назад |
| GHSA-pv4m-h859-jwmq Cross-Site Request Forgery in XXL Job | CVSS3: 6.5 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу