| Title | moxi159753 mogu_blog_v2 <=v5.2 Broken Access Control / Missing Authorization |
|---|
| Description | mogu_blog_v2, a microservice-based blog system, contains a broken access control vulnerability in the storage management endpoints /storage/initStorageSize and /storage/editStorageSize. The Spring Security configuration permits unauthenticated access to /storage/** endpoints, and the controller methods accept adminUid as a client-controlled request parameter without authentication or authorization checks. The service layer directly queries and modifies storage quota records in the database based solely on the provided adminUid value. This allows unauthenticated attackers to arbitrarily manipulate storage quotas for any administrator account by setting maxStorageSize to zero (causing denial of service) or to excessively large values (enabling unauthorized storage expansion and potential resource exhaustion). The vulnerability completely bypasses storage quota management and can lead to service disruption and business logic abuse. |
|---|
| Source | ⚠️ https://github.com/Xzzz111/exps/blob/main/archives/mogu_blog_v2-broken_access_control-1/report.md |
|---|
| User | sh7err04 (UID 92493) |
|---|
| Submission | 11/10/2025 14:31 (7 months ago) |
|---|
| Moderation | 11/30/2025 20:51 (20 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 333822 [moxi159753 Mogu Blog v2 up to 5.2 Storage Management Endpoint /storage/ authorization] |
|---|
| Points | 20 |
|---|