提交 #467695: Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage信息

标题Beijing Yunfan Internet Technology Co., Ltd yfexam-exam 1.9.2 interface leakage
描述The doc.html path in src/main/java/com/yf/exam/config/ShiroConfig.java does not have access permissions set, resulting in unauthorized viewing of all interfaces
来源⚠️ https://github.com/qiutiandefeng/yfexam-exam/issues/4
用户
 LVZC (UID 74910)
提交2024-12-22 14時53分 (2 年前)
管理2025-01-01 12時31分 (10 days later)
状态已接受
VulDB条目289925 [Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2 /doc.html 权限提升]
积分15

Want to stay up to date on a daily basis?

Enable the mail alert feature now!