Submit #618362: RuoYi https://github.com/yangzongzhuan/RuoYi <=v4.8.1 Druid credentials hardcodedinfo

TitleRuoYi https://github.com/yangzongzhuan/RuoYi <=v4.8.1 Druid credentials hardcoded
DescriptionDruid credential is hardcoded, when user uses the default credential or it is leaked, which can lead to allow attacker gather sensitive IT operation information.
Source⚠️ https://github.com/yangzongzhuan/RuoYi/issues/297
User
 ZAST.AI (UID 87884)
Submission07/18/2025 11:33 (11 months ago)
Moderation07/19/2025 20:39 (1 day later)
StatusAccepted
VulDB entry317022 [yangzongzhuan RuoYi up to 4.8.1 Druid application-druid.yml default credentials]
Points15

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!