| Titre | itwanger paicoding 1.0.3 Logical loopholes 1 |
|---|
| Description | In Paicoding system v1.0.3, by accessing the "/user/home?userId=1&homeSelectType=read" interface, it is possible to directly read the browsing history of other users, which is not visible in the design and has logical vulnerabilities, posing a threat to user privacy |
|---|
| La source | ⚠️ https://github.com/uglory-gll/javasec/blob/main/paicoding.md |
|---|
| Utilisateur | uglory (UID 82151) |
|---|
| Soumission | 13/04/2025 08:29 (il y a 1 Année) |
|---|
| Modérer | 26/04/2025 09:08 (13 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 306302 [itwanger paicoding 1.0.3 Browsing History home?userId=1&homeSelectType=read divulgation d'information] |
|---|
| Points | 17 |
|---|