Submit #554572: https://gitee.com/baseweb/JSite JSite 1.0 Improper Access Controlinfo

Titelhttps://gitee.com/baseweb/JSite JSite 1.0 Improper Access Control
BeschreibungThe built-in Apache Druid monitoring console of JSite 1.0 is not properly configured for access control, which allows attackers to directly access sensitive interfaces without authentication. Attackers can directly access the Druid console path druid/index.html to obtain sensitive information.
Quelle⚠️ https://github.com/caigo8/CVE-md/blob/main/JSite/durid%E6%9C%AA%E6%8E%88%E6%9D%83.md
Benutzer
 Caigo (UID 81287)
Einreichung09.04.2025 03:43 (vor 1 Jahr)
Moderieren18.04.2025 04:44 (9 days later)
StatusAkzeptiert
VulDB Eintrag305613 [baseweb JSite 1.0 Apache Druid Monitoring Console /druid/index.html erweiterte Rechte]
Punkte17

ZurückÜbersichtWeiter

Interested in the pricing of exploits?

See the underground prices here!