Description
An issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privileges via a crafted payload to the URL.
Remediation
References
https://github.com/dromara/Sa-Token/issues/515
Related Vulnerabilities
CVE-2018-16485 Vulnerability in npm package m-server
CVE-2019-5484 Vulnerability in maven package org.webjars.npm:bower
CVE-2020-6428 Vulnerability in maven package org.webjars.npm:electron
CVE-2019-5457 Vulnerability in npm package min-http-server
CVE-2017-16114 Vulnerability in maven package org.webjars.bower:marked