CVE-2023-33779

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
2
PROJECTS

Description

A lateral privilege escalation vulnerability in XXL-Job v2.4.1 allows users to execute arbitrary commands on another user's account via a crafted POST request to the component /jobinfo/.

xuxueli/xxl-job
xuxueli/xxl-job
A distributed task scheduling framework.(分布式任务调度平台XXL-JOB)
GitHubGitHub
30.3K
silence-silence/xxl-job-lateral-privilege-escalation-vulnerability-
silence-silence/xxl-job-lateral-privilege-escalation-vulnerability-
xxl-job lateral privilege escalation vulnerability
GitHubGitHub