Description
An issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privileges via a crafted payload to the URL.
Remediation
References
https://github.com/dromara/Sa-Token/issues/515
Related Vulnerabilities
CVE-2023-30541 Vulnerability in npm package @openzeppelin/contracts
CVE-2017-16100 Vulnerability in npm package dns-sync
CVE-2022-45388 Vulnerability in maven package net.praqma:config-rotator
CVE-2022-42466 Vulnerability in maven package org.apache.isis.commons:isis-commons
CVE-2022-40664 Vulnerability in maven package org.apache.shiro:shiro-core