漏洞描述
未授权访问漏洞是指攻击者未经过身份验证或绕过身份验证机制,就能够访问系统资源或执行敏感操作的安全漏洞。这种漏洞可能导致敏感信息泄露、数据篡改、服务中断等严重后果,给系统安全性带来极大威胁。
FastAPI Swagger Api 接口未授权访问漏洞
PoC代码
暂无相关漏洞推荐
- Swagger-UI-XSS: 3.14.1<=Swagger-UI-XSS< 3.38.0
- Exrick Xboot Swagger SecurityController.java服务器端请求伪造(CVE-2025-8527)
- POC CVE-2018-25031: Swagger UI < 3.38.0 - Cross-Site Scripting
- POC CVE-2025-8191: Swagger UI >=3.14.1 < 3.38.0 - DOM Based Cross-Site Scripting
- POC CVE-2022-0381: WordPress Embed Swagger <=1.0.0 - Cross-Site Scripting
- POC CVE-2024-22207: Fastify Swagger-UI - Information Disclosure
- POC jeecgboot-swagger: JeecgBoot 后台服务 API 接口文档
- POC swagger-disclosure: Public Swagger API Desclosure
- WordPress Embed Swagger CVE-2022-0381跨站脚本漏洞
- swagger ui XSS漏洞
- swagger-ui未授权访问