| शीर्षक | shsuishang modulithshop 1.0.0 Privilege Escalation |
|---|
| विवरण | ShopSuite ModulithShop (Java version) contains a vertical privilege escalation vulnerability caused by improper path normalization in the JWT authentication filter. An authenticated low-privileged user can bypass permission loading mechanisms using path traversal sequences, allowing unauthorized access to administrative endpoints that lack proper authorization annotations. |
|---|
| स्रोत | ⚠️ https://github.com/shsuishang/modulithshop/issues/1 |
|---|
| उपयोगकर्ता | ez-lbz (UID 87033) |
|---|
| सबमिशन | 02/11/2025 10:35 AM (6 महीनों पहले) |
|---|
| संयम | 15/11/2025 02:43 PM (13 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 332580 [shsuishang ShopSuite ModulithShop तक 45a99398cec3b7ad7ff9383694f0b53339f2d35a JwtAuthenticationFilter.java JwtAuthenticationFilter निर्देशिका ट्रैवर्सल] |
|---|
| अंक | 18 |
|---|