| Title | Keytop 路内停车收费系统 V2.7.1 Sensitive Data Exposure |
|---|
| Description | For detailed information, please refer to: https://github.com/K-mxredo/MXdocument/wiki
A Sensitive Data Exposure vulnerability exists in the "路内停车收费系统 V2.7.1",.The system's API is vulnerable to unauthorized access, allowing unauthenticated users to exploit certain interfaces and retrieve sensitive user data posing a critical security risk.
The primary impacted interface(s) are:saas/commonApi/park/getParks、saas/user/searchUser |
|---|
| Source | ⚠️ https://github.com/K-mxredo/MXdocument/wiki |
|---|
| User | SecHZredo (UID 81966) |
|---|
| Submission | 03/08/2025 08:49 (1 Year ago) |
|---|
| Moderation | 03/16/2025 18:18 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 299887 [Keytop 路内停车收费系统 2.7.1 API getParks improper authentication] |
|---|
| Points | 20 |
|---|