提出 #687532: shsuishang modulithshop 1.0.0 Privilege Escalation情報

タイトルshsuishang modulithshop 1.0.0 Privilege Escalation
説明ShopSuite ModulithShop (Java version) contains a vertical privilege escalation vulnerability caused by improper path normalization in the JWT authentication filter. An authenticated low-privileged user can bypass permission loading mechanisms using path traversal sequences, allowing unauthorized access to administrative endpoints that lack proper authorization annotations.
ソース⚠️ https://github.com/shsuishang/modulithshop/issues/1
ユーザー
 ez-lbz (UID 87033)
送信2025年11月02日 10:35 (6 月 ago)
モデレーション2025年11月15日 14:43 (13 days later)
ステータス承諾済み
VulDBエントリ332580 [shsuishang ShopSuite ModulithShop 迄 45a99398cec3b7ad7ff9383694f0b53339f2d35a JwtAuthenticationFilter.java JwtAuthenticationFilter ディレクトリトラバーサル]
ポイント18

概要

Want to know what is going to be exploited?

We predict KEV entries!