| タイトル | YXJ2018 Examination system 1.0 Any user password modification |
|---|
| 説明 | Any vulnerability in the password modification function of any user will lead to serious security risks. Attackers can use this to completely take over user accounts, steal sensitive data, escalate permissions, or perform malicious operations, which will not only cause data leakage and business losses, but may also lead to legal prosecution and reputation crisis. Such vulnerabilities usually arise from defects in the verification mechanism or insufficient permission control, and must be prevented by strengthening security measures such as identity authentication and operation auditing. |
|---|
| ソース | ⚠️ https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/74 |
|---|
| ユーザー | lingmeng (UID 83892) |
|---|
| 送信 | 2025年04月11日 05:43 (1 年 ago) |
|---|
| モデレーション | 2025年04月21日 15:48 (10 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 305776 [YXJ2018 SpringBoot-Vue-OnlineExam 1.0 /api/studentPWD studentId 弱い認証] |
|---|
| ポイント | 20 |
|---|