-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| com.xuxueli:xxl-job | maven | < 2.3.0 | 2.3.0 |
Miggo AIRoot Cause AnalysisThe commit diff shows added validation for < and > characters in AppName/AddressList parameters, which were previously only length-checked. The vulnerability report specifically identifies JobGroupController.java as the location where unsanitized parameters are processed and stored, leading to persistent XSS when rendered in the admin interface.
A Semantic Attack on Google Gemini - Read the Latest Research