VYPR

Snail Job

by Aizuda

Source repositories

CVEs (3)

  • CVE-2025-15246MedDec 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in aizuda snail-job up to 1.7.0 on macOS. Affected by this vulnerability is the function FurySerializer.deserialize of the component API. This manipulation of the argument argsStr causes deserialization. Remote exploitation of the attack is…

  • CVE-2025-14674MedDec 14, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in aizuda snail-job up to 1.6.0. Affected by this vulnerability is the function QLExpressEngine.doEval of the file snail-job-common/snail-job-common-core/src/main/java/com/aizuda/snailjob/common/core/expression/strategy/QLExpressEngine.java. The…

  • CVE-2025-2622Mar 22, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression…