Submeter #631728: xuxueli xxl-job ≤ 3.1.1 IDORinformação

Título	xuxueli xxl-job ≤ 3.1.1 IDOR
Descrição	In xxl-job versions up to 3.1.1, an Insecure Direct Object Reference (IDOR) vulnerability allows authenticated but unauthorized users to delete jobs they do not have permission to manage in /xxl-job-admin/jobinfo/remove, resulting in privilege escalation and unauthorized operations.
Fonte	⚠️ https://github.com/xuxueli/xxl-job/issues/3773
Utilizador	ez-lbz (UID 87033)
Submissão	11/08/2025 06h13 (há 9 meses)
Moderação	20/08/2025 16h17 (9 days later)
Estado	Aceite
Entrada VulDB	320806 [Xuxueli xxl-job até 3.1.1 Jobs JobInfoController.java remove ID Elevação de Privilégios]
Pontos	17

Do you know our Splunk app?

Download it now for free!