ID | CVE-2022-29002 | ||||||
Sažetak | A Cross-Site Request Forgery (CSRF) in XXL-Job v2.3.0 allows attackers to arbitrarily create administrator accounts via the component /gaia-job-admin/user/add. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:P | ||||||
Zadnje važnije ažuriranje | 07-06-2022 - 16:05 | ||||||
Objavljeno | 23-05-2022 - 21:16 |