| Название | YXJ2018 Examination system 1.0 Any user password modification |
|---|
| Описание | Any vulnerability in the password modification function of any user will lead to serious security risks. Attackers can use this to completely take over user accounts, steal sensitive data, escalate permissions, or perform malicious operations, which will not only cause data leakage and business losses, but may also lead to legal prosecution and reputation crisis. Such vulnerabilities usually arise from defects in the verification mechanism or insufficient permission control, and must be prevented by strengthening security measures such as identity authentication and operation auditing. |
|---|
| Источник | ⚠️ https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/74 |
|---|
| Пользователь | lingmeng (UID 83892) |
|---|
| Представление | 11.04.2025 05:43 (1 Год назад) |
|---|
| Модерация | 21.04.2025 15:48 (10 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 305776 [YXJ2018 SpringBoot-Vue-OnlineExam 1.0 /api/studentPWD studentId слабая аутентификация] |
|---|
| Баллы | 20 |
|---|