| Title | continew continew-admin 3.6.0 Logical loopholes |
|---|
| Description | The continue admin system v3.6.0 can reset the super administrator password through the "/dev api/system/user/1/password" interface to control the entire website |
|---|
| Source | ⚠️ https://github.com/uglory-gll/javasec/blob/main/continew-admin.md |
|---|
| User | uglory (UID 82151) |
|---|
| Submission | 04/30/2025 06:14 (1 Year ago) |
|---|
| Moderation | 05/10/2025 17:45 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 308299 [ContiNew Admin up to 3.6.0 password unverified password change] |
|---|
| Points | 15 |
|---|