XXL-JOB 2.2.0 has a Command execution vulnerability in background tasks. NOTE: this is disputed because the issues/4929 report is about an intended and supported use case (running arbitrary Bash scripts on behalf of users).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xuxueli xxl-job 2.2.0 |