| Title | JAdmin-JAVA jadmin 1.0 Incorrect Authorization |
|---|
| Description | Remote users can access the background without authorization. They can create a super system administrator, delete background users, view logs and perform other sensitive operations. |
|---|
| Source | ⚠️ https://github.com/JAdmin-JAVA/JAdmin/issues/1 |
|---|
| User | bi8bu (UID 84151) |
|---|
| Submission | 04/29/2025 03:23 (12 months ago) |
|---|
| Moderation | 05/09/2025 14:12 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 308208 [JAdmin-JAVA JAdmin 1.0 Admin Backend NoNeedLoginController.java toLogin improper authentication] |
|---|
| Points | 15 |
|---|