Submit #489634: Mindskip xzs-mysql 3.9.0 CORS Misconfigurationinfo

Title	Mindskip xzs-mysql 3.9.0 CORS Misconfiguration
Description	Mindskip xzs-mysql 3.9.0 has an overly permissive Cross-Origin Resource Sharing (CORS) configuration, allowing unauthorized cross-origin requests. This misconfiguration enables attackers to exploit a victim's authenticated session to access sensitive data or perform unauthorized actions by making requests from malicious origins.
Source	⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/xzs-mysql/OverlyPermissiveCORS-Multiple.md
User	vastzero (UID 78767)
Submission	26.01.2025 10:50 (vor 5 Monaten)
Moderation	06.02.2025 15:26 (11 days later)
Status	Akzeptiert
VulDB Entry	294859 [Mindskip xzs-mysql 学之思开源考试系统 3.9.0 CORS erweiterte Rechte]
Points	18

Might our Artificial Intelligence support you?

Check our Alexa App!