Submit #467695: Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakageinfo

TitelBeijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage
BeschreibungThe doc.html path in src/main/java/com/yf/exam/config/ShiroConfig.java does not have access permissions set, resulting in unauthorized viewing of all interfaces
Quelle⚠️ https://github.com/qiutiandefeng/yfexam-exam/issues/4
Benutzer
 LVZC (UID 74910)
Einreichung22.12.2024 14:53 (vor 2 Jahren)
Moderieren01.01.2025 12:31 (10 days later)
StatusAkzeptiert
VulDB Eintrag289925 [Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2 /doc.html erweiterte Rechte]
Punkte15

Interested in the pricing of exploits?

See the underground prices here!