제출 #687532: shsuishang modulithshop 1.0.0 Privilege Escalation정보

제목shsuishang modulithshop 1.0.0 Privilege Escalation
설명ShopSuite ModulithShop (Java version) contains a vertical privilege escalation vulnerability caused by improper path normalization in the JWT authentication filter. An authenticated low-privileged user can bypass permission loading mechanisms using path traversal sequences, allowing unauthorized access to administrative endpoints that lack proper authorization annotations.
원천⚠️ https://github.com/shsuishang/modulithshop/issues/1
사용자
 ez-lbz (UID 87033)
제출2025. 11. 02. AM 10:35 (6 개월 ago)
모더레이션2025. 11. 15. PM 02:43 (13 days later)
상태수락
VulDB 항목332580 [shsuishang ShopSuite ModulithShop 까지 45a99398cec3b7ad7ff9383694f0b53339f2d35a JwtAuthenticationFilter.java JwtAuthenticationFilter 디렉토리 순회]
포인트들18

이전개요다음

Do you want to use VulDB in your project?

Use the official API to access entries easily!