Description
An issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privileges via a crafted payload to the URL.
Remediation
References
https://github.com/dromara/Sa-Token/issues/515
Related Vulnerabilities
CVE-2017-16037 Vulnerability in npm package gomeplus-h5-proxy
CVE-2020-6428 Vulnerability in npm package electron
CVE-2023-38687 Vulnerability in npm package svelecte
CVE-2023-37909 Vulnerability in maven package org.xwiki.platform:xwiki-platform-menu-ui
CVE-2023-46673 Vulnerability in maven package org.elasticsearch:elasticsearch