CVE-2025-7787 | Xuxueli xxl-job up to 3.1.1 SampleXxlJob.java httpJobHandler server-side request forgery (Issue 3749)

Inserito da Angelo Barbosa | Lug 18, 2025 | CVE

A vulnerability, which was classified as critical, was found in Xuxueli xxl-job up to 3.1.1. Affected is the function httpJobHandler of the file srcmainjavacomxxljobexecutorservicejobhandlerSampleXxlJob.java. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2025-7787. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-7787 | Xuxueli xxl-job up to 3.1.1 SampleXxlJob.java httpJobHandler server-side request forgery (Issue 3749)

Post correlati

CVE-2024-11592 | 1000 Projects Beauty Parlour Management System 1.0 /admin/about-us.php pagetitle sql injection

CVE-2024-39384 | Adobe Premiere Pro AVI File Parser out-of-bounds write (ZDI-24-1201)

CVE-2023-7191 | S-CMS up to 2.0_build20220529-20231006 member/reg.php M_login/M_email sql injection

CVE-2024-50205 | Linux Kernel up to 5.15.169/6.1.114/6.6.58/6.11.5 ALSA apply_constraint_to_size divide by zero