| عنوان | Zhongbang CRMEB v5.6.3 Improper Authentication |
|---|
| الوصف | The Apple login functionality in CRMEB Mall System (v5.6.3 and earlier) does not verify the cryptographic signature of Apple's identity token. Instead, it directly trusts the client-provided openId parameter without any validation. This allows unauthenticated remote attackers to forge arbitrary openId values to either:
(1) create unlimited fake user accounts, or
(2) log in as any existing Apple user if their openId is known.
The vulnerability exists in LoginController.php where the application bypasses Apple's official identity verification process, violating secure authentication principles (CWE-287). Successful exploitation grants full account access with valid JWT tokens. |
|---|
| المصدر | ⚠️ https://github.com/foeCat/CVE/blob/main/CRMEB/apple_login_auth_bypass.md |
|---|
| المستخدم | Ho Cherry (UID 94105) |
|---|
| ارسال | 08/01/2026 07:13 PM (5 أشهر منذ) |
|---|
| الاعتدال | 19/01/2026 04:28 PM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 341788 [CRMEB حتى 5.6.3 LoginController.php appleLogin openId توثيق ضعيف] |
|---|
| النقاط | 20 |
|---|