提交 #467695: Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage
| 标题 | Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage |
|---|---|
| 描述 | The doc.html path in src/main/java/com/yf/exam/config/ShiroConfig.java does not have access permissions set, resulting in unauthorized viewing of all interfaces |
| 来源 | ⚠️ https:/ |
| 用户 | LVZC (UID 74910) |
| 提交 | 2024-12-22 14時53分 (2 年前) |
| 管理 | 2025-01-01 12時31分 (10 days later) |
| 状态 | 已接受 |
| VulDB条目 | 289925 [Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2 /doc.html 权限提升] |
| 积分 | 15 |