GHSA-x98f-2rgf-qwqh

GitHub Security Advisory

xxl-job-admin vulnerable to Remote Code Execution

✓ GitHub Reviewed HIGH Has CVE

xxl-job-admin 2.4.0 is vulnerable to Remote Code Execution (RCE) via /xxl-job-admin/jobcode/save.

Maven com.xuxueli:xxl-job-admin

Affected versions: 0 (last affected: 2.4.0)

CVE-2023-48089

GHSA ID

GHSA-x98f-2rgf-qwqh

Published

November 15, 2023 3:30 PM

Last Modified

November 21, 2023 7:50 PM

CVSS Score

7.5 /10

Primary Ecosystem

Maven

Primary Package

com.xuxueli:xxl-job-admin

GitHub Reviewed

✓ Yes

Last updated: July 30, 2025 6:36 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.