| Title | RuoYi RuoYi Management System 4.8.2 Code Injection |
|---|
| Description | A vulnerability was found in RuoYi Management System up to v4.8.2. It has been rated as critical. Affected by this issue is the Quartz Job Handler component. The manipulation of the argument invokeTarget leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public. |
|---|
| Source | ⚠️ https://github.com/M0onc/RuoYi-Quartz-RCE |
|---|
| User | Caishibo_ (UID 74890) |
|---|
| Submission | 03/08/2026 11:33 (1 month ago) |
|---|
| Moderation | 03/22/2026 09:23 (14 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 352401 [yangzongzhuan RuoYi up to 4.8.2 Quartz Job /monitor/job/ invokeTarget code injection] |
|---|
| Points | 18 |
|---|