| शीर्षक | Zhongbang CRMEB v5.6.3 Improper Authentication |
|---|
| विवरण | The Apple login functionality in CRMEB Mall System (v5.6.3 and earlier) does not verify the cryptographic signature of Apple's identity token. Instead, it directly trusts the client-provided openId parameter without any validation. This allows unauthenticated remote attackers to forge arbitrary openId values to either:
(1) create unlimited fake user accounts, or
(2) log in as any existing Apple user if their openId is known.
The vulnerability exists in LoginController.php where the application bypasses Apple's official identity verification process, violating secure authentication principles (CWE-287). Successful exploitation grants full account access with valid JWT tokens. |
|---|
| स्रोत | ⚠️ https://github.com/foeCat/CVE/blob/main/CRMEB/apple_login_auth_bypass.md |
|---|
| उपयोगकर्ता | Ho Cherry (UID 94105) |
|---|
| सबमिशन | 08/01/2026 07:13 PM (5 महीनों पहले) |
|---|
| संयम | 19/01/2026 04:28 PM (11 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 341788 [CRMEB तक 5.6.3 LoginController.php appleLogin openId कमजोर प्रमाणीकरण] |
|---|
| अंक | 20 |
|---|