| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3733 | xuxueli xxl-job JobInfoController.java server-side request forgery | xuxueli | xxl-job | Medium | 6.3 | 2026-03-08 11:02:15 | Deep Dive |
| CVE-2025-9264 | Xuxueli xxl-job Jobs JobInfoController.java remove resource injection | Xuxueli | xxl-job | Medium | 5.4 | 2025-08-20 23:32:06 | Deep Dive |
| CVE-2025-9263 | Xuxueli xxl-job JobLogController.java getJobsByGroup resource injection | Xuxueli | xxl-job | Medium | 4.3 | 2025-08-20 23:02:10 | Deep Dive |
| CVE-2025-7789 | Xuxueli xxl-job Token Generation IndexController.java makeToken weak password hash | Xuxueli | xxl-job | Low | 3.7 | 2025-07-18 15:14:06 | Deep Dive |
| CVE-2025-7788 | Xuxueli xxl-job SampleXxlJob.java commandJobHandler os command injection | Xuxueli | xxl-job | Medium | 6.3 | 2025-07-18 15:02:06 | Deep Dive |
| CVE-2025-7787 | Xuxueli xxl-job SampleXxlJob.java httpJobHandler server-side request forgery | Xuxueli | xxl-job | Medium | 6.3 | 2025-07-18 14:14:06 | Deep Dive |
| CVE-2025-6701 | Xuxueli xxl-sso doLogin redirect | Xuxueli | xxl-sso | Low | 3.5 | 2025-06-26 16:00:14 | Deep Dive |
| CVE-2025-6700 | Xuxueli xxl-sso login cross site scripting | Xuxueli | xxl-sso | Medium | 4.3 | 2025-06-26 15:31:14 | Deep Dive |
| CVE-2024-3366 | Xuxueli xxl-job Template JdkSerializeTool.java deserialize injection | Xuxueli | xxl-job | Low | 3.5 | 2024-04-06 10:31:05 | Deep Dive |
| CVE-2023-26120 | xxl-job 跨站脚本漏洞 | - | com.xuxueli:xxl-job | Medium | 5.4 | 2023-04-10 05:00:01 | Deep Dive |