anji-plus AJ-Report is affected by an authentication bypass vulnerability. A remote and unauthenticated attacker can append “;swagger-ui” to HTTP requests to bypass authentication and execute arbitrary Java on the victim server.
https://vulncheck.com/advisories/aj-report-swagger
https://gitee.com/anji-plus/report/pulls/166/files
https://github.com/yuebusao/AJ-REPORT-EXPLOIT
https://github.com/vulhub/vulhub/tree/master/aj-report/CNVD-2024-15077
Description A weak credentials vulnerability potentially allows privileged system access via SSH to Sophos Firewall older than version 20.0 MR3
Description A relative path traversal vulnerability (CWE-23) in FortiWAN version 4.5.7 and below, 4.4 all versions may allow a remote
Description IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to