| Название | https://github.com/TaleLin/lin-cms-spring-boot lin-cms-spring-boot v0.2.1 Broken Access Control |
|---|
| Описание | An unauthorized access vulnerability exists in version 0.2.1 of Lin-CMS Spring Boot. This vulnerability allows remote attackers to create arbitrary books without authorization by exploiting the book creation method within the BookController.java component, and to update the information of any existing book without authorization by exploiting the book update method. |
|---|
| Источник | ⚠️ https://github.com/TaleLin/lin-cms-spring-boot/issues/336 |
|---|
| Пользователь | DaytimeHeaven (UID 96977) |
|---|
| Представление | 04.05.2026 09:57 (1 месяц назад) |
|---|
| Модерация | 30.05.2026 07:45 (26 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 367405 [TaleLin lin-cms-spring-boot до 0.2.1 book Endpoint BookController.java эскалация привилегий] |
|---|
| Баллы | 18 |
|---|