| Название | Zhongbang CRMEB v5.6.3 Missing Authorization |
|---|
| Описание | All cron job related endpoints lack authentication and authorization controls. Any attacker can invoke these cron job endpoints without authentication, leading to malicious order cancellation, forced delivery confirmation, distribution system disruption, and other serious impacts. |
|---|
| Источник | ⚠️ https://github.com/foeCat/CVE/blob/main/CRMEB/crontab_unauthorized_access.md |
|---|
| Пользователь | Ho Cherry (UID 94105) |
|---|
| Представление | 12.01.2026 17:47 (3 месяцы назад) |
|---|
| Модерация | 01.02.2026 08:35 (20 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 343633 [Zhong Bang CRMEB до 5.6.3 crontab Endpoint CrontabController.php эскалация привилегий] |
|---|
| Баллы | 17 |
|---|