Vulnerabilities (CVE)

Filtered by vendor Powerjob Subscribe
Filtered by product Powerjob
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37754 1 Powerjob 1 Powerjob 2024-11-21 N/A 9.8 CRITICAL
PowerJob v4.3.3 was discovered to contain a remote command execution (RCE) vulnerability via the instanceId parameter at /instance/detail.
CVE-2023-36106 1 Powerjob 1 Powerjob 2024-11-21 N/A 7.5 HIGH
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list.
CVE-2023-29926 1 Powerjob 1 Powerjob 2024-11-21 N/A 9.8 CRITICAL
PowerJob V4.3.2 has unauthorized interface that causes remote code execution.
CVE-2023-29924 1 Powerjob 1 Powerjob 2024-11-21 N/A 9.8 CRITICAL
PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution.
CVE-2023-29923 1 Powerjob 1 Powerjob 2024-11-21 N/A 5.3 MEDIUM
PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.
CVE-2023-29922 1 Powerjob 1 Powerjob 2024-11-21 N/A 5.3 MEDIUM
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
CVE-2023-29921 1 Powerjob 1 Powerjob 2024-11-21 N/A 5.3 MEDIUM
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create app interface.
CVE-2020-28865 1 Powerjob 1 Powerjob 2024-11-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in PowerJob through 3.2.2, allows attackers to change arbitrary user passwords via the id parameter to /appinfo/save.