CVE-2025-13250 – WeiYe-Jing datax-web Job triggerJob access control

CVE ID : CVE-2025-13250

Published : Nov. 16, 2025, 12:15 p.m. | 48 minutes ago

Description : A vulnerability was detected in WeiYe-Jing datax-web up to 2.1.2. This impacts the function remove/update/pause/start/triggerJob of the component Job Handler. Performing manipulation results in improper access controls. The attack may be initiated remotely. The exploit is now public and may be used.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…