cbcvebase.
CVE-2023-29923
published 2023-04-19

CVE-2023-29923: PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.

PriorityP342medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EXPLOIT
EPSS
9.54%
94.9th percentile
PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.

Affected

1 ranges
VendorProductVersion rangeFixed in
powerjobpowerjob

Detection & IOCsextracted from sources · hover to see the quote

urlPOST /job/list HTTP/1.1
path/job/list
other{"appId":1,"index":0,"pageSize":10}
  • Unauthenticated POST to /job/list with JSON body containing appId, index, and pageSize fields; a successful response contains '{"success":true,"data":{"index":0,"pageSize":10,' in the body with Content-Type application/json header and HTTP 200 status.
  • Shodan fingerprinting query for exposed PowerJob instances: http.html:"powerjob"
  • FOFA fingerprinting queries for exposed PowerJob instances: app="PowerJob", app="powerjob", body="powerjob"
  • ·The vulnerability affects PowerJob versions up to and including 4.3.2; the unauthenticated /job/list endpoint requires no authentication token or session cookie, making any POST to this path from an unauthenticated source suspicious.
  • ·The appId value of 1 is used in the PoC payload; real-world exploitation may enumerate other appId values to access additional job listings.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.