CVE-2022-29002
23.05.2022, 21:16
A Cross-Site Request Forgery (CSRF) in XXL-Job v2.3.0 allows attackers to arbitrarily create administrator accounts via the component /gaia-job-admin/user/add.
| Vendor | Product | Version |
|---|---|---|
| xuxueli | xxl-job | 2.3.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration