Multiple cross-site scripting (XSS) vulnerabilities in xxl-job v2.2.0 allow remote malicious users to inject arbitrary web script or HTML via (1) AppName and (2)AddressList parameter in JobGroupController.java file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xuxueli xxl-job 2.2.0 |