CVE-2022-29002

Published: 2022-05-23T21:16Z

Last Modified: 2024-11-21T06:58Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A Cross-Site Request Forgery (CSRF) in XXL-Job v2.3.0 allows attackers to arbitrarily create administrator accounts via the component /gaia-job-admin/user/add. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt