| Título | https://gitee.com/veal98/Echo Echo 4.2 Improper Authorization |
|---|
| Descripción | Version 2.4 of Echo has a flaw in its authorization mechanism. Attackers can exploit the following methods to bypass the security interceptor (Middleware), thereby enabling unauthorized access to protected routes or API interfaces. |
|---|
| Fuente | ⚠️ https://github.com/caigo8/CVE-md/blob/main/Echo/%E4%B8%8D%E5%AE%89%E5%85%A8%E7%9A%84%E6%9D%83%E9%99%90%E6%A0%A1%E9%AA%8C.md |
|---|
| Usuario | Caigo (UID 81287) |
|---|
| Sumisión | 2025-04-02 17:32 (hace 1 Año) |
|---|
| Moderación | 2025-04-14 00:56 (11 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 304608 [veal98 小牛肉 Echo 开源社区系统 4.2 Ticket LoginTicketInterceptor.java preHandle escalada de privilegios] |
|---|
| Puntos | 16 |
|---|