| 제목 | Zhongbang CRMEB v5.6.3 Missing Authorization |
|---|
| 설명 | All cron job related endpoints lack authentication and authorization controls. Any attacker can invoke these cron job endpoints without authentication, leading to malicious order cancellation, forced delivery confirmation, distribution system disruption, and other serious impacts. |
|---|
| 원천 | ⚠️ https://github.com/foeCat/CVE/blob/main/CRMEB/crontab_unauthorized_access.md |
|---|
| 사용자 | Ho Cherry (UID 94105) |
|---|
| 제출 | 2026. 01. 12. PM 05:47 (3 개월 ago) |
|---|
| 모더레이션 | 2026. 02. 01. AM 08:35 (20 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 343633 [Zhong Bang CRMEB 까지 5.6.3 crontab Endpoint CrontabController.php 권한 상승] |
|---|
| 포인트들 | 17 |
|---|