Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
112057.5%CRITICAL

Related CVEs

12
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-14518A vulnerability was identified in PowerJob up to 5.1.2. This vulnerability affects the function checkConnectivity of the file src/main/java/tech/powerjob/common/utils/net/PingPongUtils.java of the component Network Request Handler. The manipulation of the argument targetIp/targetPort leads to server-side request forgery. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.LOW2.122.8%Dec 11, 2025
CVE-2025-11581A security vulnerability has been detected in PowerJob up to 5.1.2. This vulnerability affects unknown code of the file /openApi/runJob of the component OpenAPIController. Such manipulation leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.MEDIUM5.533.3%Oct 10, 2025
CVE-2025-11580A weakness has been identified in PowerJob up to 5.1.2. This affects the function list of the file /user/list. This manipulation causes missing authorization. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.MEDIUM5.559.3%Oct 10, 2025
CVE-2024-44546Powerjob >= 3.20 is vulnerable to SQL injection via the version parameter.CRITICAL9.832.7%Nov 11, 2024
CVE-2023-36106An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list.HIGH7.548.1%Aug 17, 2023
CVE-2023-37754PowerJob v4.3.3 was discovered to contain a remote command execution (RCE) vulnerability via the instanceId parameter at /instance/detail.CRITICAL9.897.8%Jul 28, 2023
CVE-2023-29924PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution.CRITICAL9.860.9%Apr 21, 2023
CVE-2023-29926PowerJob V4.3.2 has unauthorized interface that causes remote code execution.CRITICAL9.863.5%Apr 20, 2023
CVE-2023-29922PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.MEDIUM5.385.7%Apr 19, 2023
CVE-2023-29923PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.MEDIUM5.394.8%Apr 19, 2023
CVE-2023-29921PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create app interface.MEDIUM5.340.9%Apr 19, 2023
CVE-2020-28865An issue was discovered in PowerJob through 3.2.2, allows attackers to change arbitrary user passwords via the id parameter to /appinfo/save.HIGH7.549.6%Jun 16, 2022