author
L1NG
383417532@qq.com
Summary
没有空间权限的成员,可以越权查看其他工作空间的成员信息
Members without space permissions can view member information from other workspaces beyond their authority
Detail
/product/user/special/ws/member/list/all接口缺少了权限检查
PoC
1.账号1加入空间1
2.账号2加入空间2
3.账号2点击产品列表出现查看空间2的成员信息数据包时候将空间2的id替换成空间1的id
4.可以查看到空间1的成员信息
- Account 1 Joins Space 1
- Account 2 Join Space 2
- When Account 2 clicks on the product list to view the member information data package of Space 2, replace the ID of Space 2 with the ID of Space 1
- You can view the member information of space 1
author
L1NG
383417532@qq.com
Summary
没有空间权限的成员,可以越权查看其他工作空间的成员信息
Members without space permissions can view member information from other workspaces beyond their authority
Detail
/product/user/special/ws/member/list/all接口缺少了权限检查
PoC
1.账号1加入空间1
2.账号2加入空间2
3.账号2点击产品列表出现查看空间2的成员信息数据包时候将空间2的id替换成空间1的id
4.可以查看到空间1的成员信息