Invia #467695: Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakageinformazioni

TitoloBeijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage
DescrizioneThe doc.html path in src/main/java/com/yf/exam/config/ShiroConfig.java does not have access permissions set, resulting in unauthorized viewing of all interfaces
Fonte⚠️ https://github.com/qiutiandefeng/yfexam-exam/issues/4
Utente
 LVZC (UID 74910)
Sottomissione22/12/2024 14:53 (2 anni fa)
Moderazione01/01/2025 12:31 (10 days later)
StatoAccettato
Voce VulDB289925 [Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2 /doc.html escalationi di privilegi]
Punti15

Want to know what is going to be exploited?

We predict KEV entries!