Submit #548986: https://gitee.com/xujiangfei/admintwo admintwo 1.0 Improper Access Controlsinfo

Titlehttps://gitee.com/xujiangfei/admintwo admintwo 1.0 Improper Access Controls
DescriptionThe unauthorized access to the /user/home interface of version 1.0 of admintwo has been identified. Attackers can obtain user information without authorization by traversing the values of the id field.
Source⚠️ https://github.com/caigo8/CVE-md/blob/main/admintwo/%E6%9C%AA%E6%8E%88%E6%9D%83%E7%94%A8%E6%88%B7%E4%BF%A1%E6%81%AF%E9%81%8D%E5%8E%86.md
User
 Caigo (UID 81287)
Submission04/02/2025 04:56 (1 Year ago)
Moderation04/04/2025 09:35 (2 days later)
StatusAccepted
VulDB entry303325 [xujiangfei admintwo 1.0 /user/home ID access control]
Points16

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!