What is the vulnerability ID for this permissions vulnerability?

The vulnerability ID for this permissions vulnerability is CVE-2023-27087.

What is the severity level of CVE-2023-27087?

The severity level of CVE-2023-27087 is high, with a severity value of 7.5.

How does the permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allow an attacker to obtain sensitive information?

The permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allows an attacker to obtain sensitive information via the pageList parameter.

Which versions of Xuxueli xxl-job are affected by this permissions vulnerability?

This permissions vulnerability affects Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1.

Is there any official reference or documentation about this permissions vulnerability?

Yes, you can find more information about this permissions vulnerability in the official reference at https://github.com/xuxueli/xxl-job/issues/3096.

Vulnerability/
CVE-2023-27087

high

7.5

21/3/2023

24/3/2023

CVE-2023-27087

First published: Tue Mar 21 2023(Updated: )

Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
xuxueli xxl-job	=2.2.0
xuxueli xxl-job	=2.3.0
xuxueli xxl-job	=2.3.1

Never miss a vulnerability like this again

Reference Links

https://github.com/xuxueli/xxl-job/issues/3096

Frequently Asked Questions

What is the vulnerability ID for this permissions vulnerability?
The vulnerability ID for this permissions vulnerability is CVE-2023-27087.
What is the severity level of CVE-2023-27087?
The severity level of CVE-2023-27087 is high, with a severity value of 7.5.
How does the permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allow an attacker to obtain sensitive information?
The permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allows an attacker to obtain sensitive information via the pageList parameter.
Which versions of Xuxueli xxl-job are affected by this permissions vulnerability?
This permissions vulnerability affects Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1.
Is there any official reference or documentation about this permissions vulnerability?
Yes, you can find more information about this permissions vulnerability in the official reference at https://github.com/xuxueli/xxl-job/issues/3096.

collector/nvd-index
vendor/xuxueli
canonical/xuxueli xxl-job
version/xuxueli xxl-job/2.2.0
version/xuxueli xxl-job/2.3.0
version/xuxueli xxl-job/2.3.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.