CVE-2020-28865 Information

Description

An issue was discovered in PowerJob through 3.2.2 allows attackers to change arbitrary user passwords via the id parameter to /appinfo/save.

Reference

https://github.com/KFCFans/PowerJob/issues/99