| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-23811 | 5.0 |
xxl-job 2.2.0 allows Information Disclosure of username, model, and password via job/admin/controller/UserController.java.
|
21-07-2021 - 11:39 | 03-09-2020 - 17:15 | |
| CVE-2020-23814 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in xxl-job v2.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) AppName and (2)AddressList parameter in JobGroupController.java file.
|
04-09-2020 - 01:28 | 03-09-2020 - 17:15 |