CVE-2018-19110

Name of the Vulnerable Software and Affected Versions tianti version 2.3

Description The issue allows remote authenticated users to bypass intended permission restrictions. This is possible by visiting the "tianti-module-admin/user/skin/list" endpoint directly. The UserController.java maps a /skin/list request to the skinList function, which lacks an authorization check.

Recommendations For tianti version 2.3, consider adding an authorization check to the skinList function in UserController.java to prevent unauthorized access. As a temporary workaround, restrict access to the "tianti-module-admin/user/skin/list" endpoint to minimize the risk of exploitation.