제출 #467694: Antabot White-Jotter 0.2.2 Authorization Bypass정보

제목Antabot White-Jotter 0.2.2 Authorization Bypass
설명In Antabot White-Jotter 0.2.2, specially crafted HTTP requests to endpoints requiring privileged access such as those starting with '/api/admin' or '/api/menu' results in authorization bypass. This is attributed to the usage of a vulnerable version of Apache Shiro for authorization purposes.
원천⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/white-jotter/AuthorizationBypass-ShiroSpring.md
사용자
 vastzero (UID 78767)
제출2024. 12. 22. PM 02:41 (2 연령 ago)
모더레이션2024. 12. 29. PM 01:30 (7 days later)
상태중복
VulDB 항목218303 [Apache Shiro 까지 1.10.x HTTP Request 약한 인증]
포인트들0

Want to stay up to date on a daily basis?

Enable the mail alert feature now!