CVE-2020-29204

Published: 2020-12-27T06:15Z

Last Modified: 2024-11-21T05:23Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

XXL-JOB 2.2.0 allows Stored XSS (in Add User) to bypass the 20-character limit via xxl-job-admin/src/main/java/com/xxl/job/admin/controller/UserController.java. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt