| Titel | YXJ2018 Examination system 1.0 Any user password modification |
|---|
| Beschreibung | Any vulnerability in the password modification function of any user will lead to serious security risks. Attackers can use this to completely take over user accounts, steal sensitive data, escalate permissions, or perform malicious operations, which will not only cause data leakage and business losses, but may also lead to legal prosecution and reputation crisis. Such vulnerabilities usually arise from defects in the verification mechanism or insufficient permission control, and must be prevented by strengthening security measures such as identity authentication and operation auditing. |
|---|
| Quelle | ⚠️ https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/74 |
|---|
| Benutzer | lingmeng (UID 83892) |
|---|
| Einreichung | 11.04.2025 05:43 (vor 1 Jahr) |
|---|
| Moderieren | 21.04.2025 15:48 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 305776 [YXJ2018 SpringBoot-Vue-OnlineExam 1.0 /api/studentPWD studentId schwache Authentisierung] |
|---|
| Punkte | 20 |
|---|