| Title | https://gitee.com/baseweb/JSite JSite 1.0 Improper Access Control |
|---|
| Description | The built-in Apache Druid monitoring console of JSite 1.0 is not properly configured for access control, which allows attackers to directly access sensitive interfaces without authentication. Attackers can directly access the Druid console path druid/index.html to obtain sensitive information. |
|---|
| Source | ⚠️ https://github.com/caigo8/CVE-md/blob/main/JSite/durid%E6%9C%AA%E6%8E%88%E6%9D%83.md |
|---|
| User | Caigo (UID 81287) |
|---|
| Submission | 04/09/2025 03:43 (1 Year ago) |
|---|
| Moderation | 04/18/2025 04:44 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 305613 [baseweb JSite 1.0 Apache Druid Monitoring Console /druid/index.html access control] |
|---|
| Points | 17 |
|---|