Invia #584491: quequnlong shiyi-blog 1.2.1 Logical loopholes 2informazioni

Titoloquequnlong shiyi-blog 1.2.1 Logical loopholes 2
DescrizioneShiyi blogv1.2.1“/api/sys/user/verifyPassword/{password}” There is a logical vulnerability in the interface that allows hackers to bypass screen lock and access the administrator backend
Fonte⚠️ https://github.com/uglory-gll/javasec/blob/main/shiyi-blog.md
Utente
 uglory (UID 82151)
Sottomissione25/05/2025 12:33 (1 Anno fa)
Moderazione03/06/2025 07:58 (9 days later)
StatoAccettato
Voce VulDB310926 [quequnlong shiyi-blog fino a 1.2.1 Administrator Backend verifyPassword autenticazione debole]
Punti17

Do you want to use VulDB in your project?

Use the official API to access entries easily!