CVE-2024-13200 | wander-chu SpringBoot-Blog 1.0 HTTP POST Request BaseInterceptor.java preHandle access control

A vulnerability, which was classified as critical, was found in wander-chu SpringBoot-Blog 1.0. This affects the function preHandle of the file src/main/java/com/my/blog/website/interceptor/BaseInterceptor.java of the component HTTP POST Request Handler. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-13200. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-13200 | wander-chu SpringBoot-Blog 1.0 HTTP POST Request BaseInterceptor.java preHandle access control

Post correlati

CVE-2024-53705 | SonicWALL SonicOS SSH Management server-side request forgery (SNWLID-2025-0003)

CVE-2024-37726 | Micro-Star International MSI Center 2.0.36.0 Export System Info MSI.CentralServer.exe permission

CVE-2023-46272 | Extreme Networks HiveOS ah_auth stack-based overflow (ZDI-23-1765)

CVE-2024-20410 | Cisco Firepower Management Center up to 7.2.5.2 cross site scripting (cisco-sa-fmc-xss-dhJxQYZs)