| 标题 | jishenghua https://github.com/jishenghua/jshERP <=3.5 IDOR (arbitrary password reset) |
|---|
| 描述 |
A high-risk IDOR vulnerability has been discovered in the latest version (v3.5). After logging in with a low-privilege role account, users can send requests to modify any account's password through the /jshERP-boot/user/updatePwd endpoint, just like a system administrator account, and can successfully change target account's password.
|
|---|
| 来源 | ⚠️ https://github.com/jishenghua/jshERP/issues/123 |
|---|
| 用户 | ZAST.AI (UID 87884) |
|---|
| 提交 | 2025-07-20 12時03分 (11 月前) |
|---|
| 管理 | 2025-07-21 09時50分 (22 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 317089 [jshERP 直到 3.5 updatePwd 权限提升] |
|---|
| 积分 | 18 |
|---|