Количество 2
Количество 2
CVE-2024-3366
A vulnerability classified as problematic was found in Xuxueli xxl-job up to 2.4.1. This vulnerability affects the function deserialize of the file com/xxl/job/core/util/JdkSerializeTool.java of the component Template Handler. The manipulation leads to injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-259480.
GHSA-2v42-xp3j-47m4
Xuxueli xxl-job template injection vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-3366 A vulnerability classified as problematic was found in Xuxueli xxl-job up to 2.4.1. This vulnerability affects the function deserialize of the file com/xxl/job/core/util/JdkSerializeTool.java of the component Template Handler. The manipulation leads to injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-259480. | CVSS3: 3.5 | 0% Низкий | почти 2 года назад |
| GHSA-2v42-xp3j-47m4 Xuxueli xxl-job template injection vulnerability | CVSS3: 3.5 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу