Aibot88

**Name of the Vulnerable Software and Affected Versions** onedev versions prior to 15.0.6 **Description** Improper authorization exists in the Parent Project Handler component within the '/projects/' file. A remote attacker can manipulate the `project.parentId` argument to bypass authorization controls. **Recommendations** Upgrade to version 15.0.6.

**Name of the Vulnerable Software and Affected Versions** Onedev versions prior to 15.0.6 **Description** Improper authorization exists in the Pull Request Handler component within the `/issues/` file. Specifically, the `canAccessIssue()` function fails to properly validate the `issue` argument, allowing a remote attacker to bypass authorization controls. **Recommendations** Update to version 15.0.6.

**Name of the Vulnerable Software and Affected Versions** onedev versions prior to 15.0.6 **Description** Improper authorization exists in the REST API component. A remote attacker can manipulate the `project.defaultBranch` argument within the '/repositories/{projectId}/default-branch' endpoint to bypass authorization controls. **Recommendations** Update to version 15.0.6.

**Name of the Vulnerable Software and Affected Versions** onedev versions prior to 15.0.6 **Description** Improper authorization occurs in the '/projects' file due to the manipulation of the `project.forkedFromId` argument. This issue allows a remote attacker to bypass authorization controls. **Recommendations** Update to version 15.0.6.

Name of the Vulnerable Software and Affected Versions Dromara lamp-cloud versions up to 5.8.1 Description A flaw exists in the `pageUser` function within the `/defUser/pageUser` file of the `DefUserController` component, leading to improper authorization. This issue is remotely exploitable. The exploit is publicly available. Recommendations For versions up to 5.8.1, address the improper authorization in the `pageUser` function of the `/defUser/pageUser` file within the `DefUserController` component.

**Name of the Vulnerable Software and Affected Versions** JeecgBoot versions prior to 3.9.0 **Description** A weakness exists in JeecgBoot that allows for the management of user sessions. The issue is located in the `SysUserOnlineController` function within the file jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/SysUserOnlineController.java. This manipulation can be performed remotely. The exploit for this issue has been publicly released. **Recommendations** Apply patch b686f9fbd1917edffe5922c6362c817a9361cfbd to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** JeecgBoot versions up to 3.9.0 **Description** A security flaw exists in JeecgBoot that allows for improper authentication. The issue is related to the manipulation of the `ID` argument within an unknown function in the file jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/SysTenantController.java, specifically within the Multi-Tenant Management Module. This flaw can be exploited remotely. The exploit has been publicly released. **Recommendations** Apply the patch e1c8f00bf2a2e0edddbaa8119afe1dc92d9dc1d2/67795493bdc579e489d3ab12e52a1793c4f8a0ee to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** fuyang lipengjun platform version 1.0 **Description** An issue exists in the TopicController function within the /topic/queryAll file, leading to improper authorization. This can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** fuyang lipengjun platform version 1.0 **Description** A flaw exists in the fuyang lipengjun platform that allows for improper authorization. This issue is related to the `SysSmsLogController` function located in the `/sys/smslog/queryAll` file. The attack can be initiated remotely, and the exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** fuyang lipengjun platform version 1.0 **Description** An improper authorization issue exists in the `TopicCategoryController` function within the `/topiccategory/queryAll` file of the fuyang lipengjun platform. This allows for remote attacks. The exploit for this issue has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** fuyang lipengjun platform version 1.0 **Description** A security issue exists in the fuyang lipengjun platform that results in improper authorization. This affects the `UserCouponController` function within the `/usercoupon/queryAll` file. Remote exploitation is possible, and details about the exploit have been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JeecgBoot versions through 3.8.2 **Description** A weakness exists in JeecgBoot that may lead to improper authorization. The issue affects an unknown function within the `/message/sysMessageTemplate/sendMsg` file. The exploit for this issue has been publicly released. The vendor was contacted but did not respond. **Recommendations** Update JeecgBoot to a version later than 3.8.2. As a temporary workaround, restrict access to the `/message/sysMessageTemplate/sendMsg` file.

Name of the Vulnerable Software and Affected Versions: yangzongzhuan RuoYi versions up to 4.8.1 Description: A flaw exists in yangzongzhuan RuoYi up to version 4.8.1 related to improper authorization within the Role Handler component. The issue is associated with the `/system/role/authUser/cancelAll` file. Manipulation of the `roleId`/`userIds` argument can lead to unauthorized access. The vulnerability is remotely exploitable. Recommendations: Versions prior to 4.8.1 should be used.

Name of the Vulnerable Software and Affected Versions: roncoo-pay (affected versions not specified) Description: A vulnerability exists in roncoo-pay that allows for improper authentication. The issue is related to manipulation of an unknown function within the `/user/info/list` file. This allows for remote exploitation. The exploit has been made public. The vendor was contacted but did not respond. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: JeecgBoot versions prior to 3.8.2 Description: A security flaw has been discovered in JeecgBoot related to improper authorization within the Tenant Log Export component. The issue affects the file `/sys/tenant/exportLog`. This manipulation can be initiated remotely, and the exploit has been publicly released. The vendor was contacted regarding this disclosure but did not respond. Recommendations: Update JeecgBoot to a version later than 3.8.2.

Name of the Vulnerable Software and Affected Versions: fuyang lipengjun platform version 1.0.0 Description: A weakness exists in the `queryAll` function of the `AdPositionController` component, located in the file `/adposition/queryAll`. This manipulation causes improper authorization and can be initiated remotely. The exploit has been made publicly available. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `/adposition/queryAll` file until a fix is available. Disable the `queryAll` function until a fix is available.

**Name of the Vulnerable Software and Affected Versions** elunez eladmin versions up to 2.7 **Description** A vulnerability exists in elunez eladmin that affects the `queryErrorLogDetail` function within the `SysLogController` component. The vulnerability is located in the file `/api/logs/error/1` and leads to improper authorization. It is possible to initiate the attack remotely. **Recommendations** Versions prior to 2.8 should be updated. As a temporary workaround, consider restricting access to the `/api/logs/error/1` API endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** elunez eladmin versions up to 2.7 **Description** A flaw exists in elunez eladmin that impacts the `updateUserEmail` function within the Email Address Handler component. Manipulation of the `id/email` argument in the `/api/users/updateEmail/` API endpoint can lead to improper authorization. The attack may be performed remotely and is considered highly complex with difficult exploitability. The exploit has been published and requires knowledge of the RSA-encrypted password of the attacked user account. **Recommendations** For versions up to 2.7, address the improper authorization issue by validating the `id/email` argument in the `updateUserEmail` function of the Email Address Handler component. Restrict access to the `/api/users/updateEmail/` API endpoint until a resolution is implemented.

**Name of the Vulnerable Software and Affected Versions** Weitong Mall version 1.0.0 **Description** A critical issue was found in the Sale Endpoint component, where the manipulation of the `ID` argument leads to improper authorization. This issue can be exploited remotely. The exploit has been disclosed to the public. **Recommendations** For Weitong Mall version 1.0.0, as a temporary workaround, consider restricting access to the Sale Endpoint component until a patch is available. Avoid using the `ID` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weitong Mall version 1.0.0 **Description** A critical issue was found in the Product Statistics Handler component, specifically affecting the /queryTotal file. The manipulation of the `isDelete` argument with the input 1 leads to improper access controls. This issue can be exploited remotely. **Recommendations** For Weitong Mall version 1.0.0, as a temporary workaround, consider restricting access to the /queryTotal file of the Product Statistics Handler component to minimize the risk of exploitation. Avoid using the `isDelete` argument with the input 1 in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.