Title | wangl1989 mysiteforme 1.0 Remote Command Execution |
---|
Description | src/main/java/com/mysiteforme/admin/config/ShiroConfig.java The rememberMeManager method in leaks the key 2AvVhdsgUs0FSA3SDFAdeg==, which can directly cause remote command execution. |
---|
Source | ⚠️ https://github.com/wangl1989/mysiteforme/issues/52 |
---|
User | LVZC (UID 74910) |
---|
Submission | 12/24/2024 01:03 PM (1 month ago) |
---|
Moderation | 01/04/2025 10:48 AM (11 days later) |
---|
Status | Accepted |
---|
VulDB Entry | 290210 [wangl1989 mysiteforme 1.0 ShiroConfig.java rememberMeManager deserialization] |
---|
Points | 15 |
---|