cbcvebase.
CVE-2023-48087
published 2023-11-15

CVE-2023-48087: xxl-job-admin 2.4.0 is vulnerable to Insecure Permissions via /xxl-job-admin/joblog/clearLog and /xxl-job-admin/joblog/logDetailCat.

PriorityP425medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
EPSS
0.36%
28.1th percentile
xxl-job-admin 2.4.0 is vulnerable to Insecure Permissions via /xxl-job-admin/joblog/clearLog and /xxl-job-admin/joblog/logDetailCat.

Affected

1 ranges
VendorProductVersion rangeFixed in
xuxuelixxl-job
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.