daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: cves/2021/CVE-2021-37580.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-05-02 15:45:56 -04:00
parent e34fde5723
commit b8ba7c6074
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
cves/2021/CVE-2021-37580.yaml
View File

@ -4,7 +4,7 @@ info:
name: Apache ShenYu Admin JWT - Authentication Bypass name: Apache ShenYu Admin JWT - Authentication Bypass
author: pdteam author: pdteam
severity: critical severity: critical
description: Apache ShenYu 2.3.0 and 2.4.0 allow Admin access without proper authentication. The incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication. description: Apache ShenYu 2.3.0 and 2.4.0 allow Admin access without proper authentication. The incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication.
reference: reference:
- https://nvd.nist.gov/vuln/detail/CVE-2021-37580 - https://nvd.nist.gov/vuln/detail/CVE-2021-37580
- https://github.com/fengwenhua/CVE-2021-37580 - https://github.com/fengwenhua/CVE-2021-37580
@ -35,4 +35,5 @@ requests:
status: status:
- 200 - 200
# Enhanced by mp on 2022/05/02 # Enhanced by mp on 2022/05/02