Submit #549537: https://gitee.com/veal98/Echo Echo 4.2 Improper Authorizationinfo

Titlehttps://gitee.com/veal98/Echo Echo 4.2 Improper Authorization
DescriptionVersion 2.4 of Echo has a flaw in its authorization mechanism. Attackers can exploit the following methods to bypass the security interceptor (Middleware), thereby enabling unauthorized access to protected routes or API interfaces.
Source⚠️ https://github.com/caigo8/CVE-md/blob/main/Echo/%E4%B8%8D%E5%AE%89%E5%85%A8%E7%9A%84%E6%9D%83%E9%99%90%E6%A0%A1%E9%AA%8C.md
User
 Caigo (UID 81287)
Submission04/02/2025 17:32 (1 Year ago)
Moderation04/14/2025 00:56 (11 days later)
StatusAccepted
VulDB entry304608 [veal98 小牛肉 Echo 开源社区系统 4.2 Ticket LoginTicketInterceptor.java preHandle improper authorization]
Points16

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!