| 제목 | Zhongbang CRMEB v5.6.3 Improper Authentication |
|---|
| 설명 | The Apple login functionality in CRMEB Mall System (v5.6.3 and earlier) does not verify the cryptographic signature of Apple's identity token. Instead, it directly trusts the client-provided openId parameter without any validation. This allows unauthenticated remote attackers to forge arbitrary openId values to either:
(1) create unlimited fake user accounts, or
(2) log in as any existing Apple user if their openId is known.
The vulnerability exists in LoginController.php where the application bypasses Apple's official identity verification process, violating secure authentication principles (CWE-287). Successful exploitation grants full account access with valid JWT tokens. |
|---|
| 원천 | ⚠️ https://github.com/foeCat/CVE/blob/main/CRMEB/apple_login_auth_bypass.md |
|---|
| 사용자 | Ho Cherry (UID 94105) |
|---|
| 제출 | 2026. 01. 08. PM 07:13 (5 개월 ago) |
|---|
| 모더레이션 | 2026. 01. 19. PM 04:28 (11 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 341788 [CRMEB 까지 5.6.3 LoginController.php appleLogin openId 약한 인증] |
|---|
| 포인트들 | 20 |
|---|