提交 #749873: https://github.com/zhanghuanhao/LibrarySystem LibrarySystem v1.1.1 Improper Access Control信息

标题https://github.com/zhanghuanhao/LibrarySystem LibrarySystem v1.1.1 Improper Access Control
描述The library management system has an unauthorized access vulnerability, allowing unauthorized access to the administrator's backend.Attackers can access the management backend without logging in and perform CRUD operations on the system.Accessing /admin_books.html without logging in successfully logs into the management system, allowing users to perform CRUD operations.
来源⚠️ https://github.com/zhanghuanhao/LibrarySystem/issues/32
用户
 Jszdk (UID 95030)
提交2026-01-31 18時37分 (3 月前)
管理2026-02-15 17時06分 (15 days later)
状态已接受
VulDB条目346158 [zhanghuanhao LibrarySystem 图书馆管理系统 直到 1.1.1 BookController.java 权限提升]
积分19

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!