'; } else{ echo ''; } echo '
|
|
|||
| Rule General Information |
|---|
| Release Date: | 2026-06-23 | |
| Rule Name: | SpringBlade Information Leakage Vulnerability (CVE-2021-44910) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | SpringBlade contains an information leakage vulnerability in the /api/blade-user/user-list endpoint that exposes sensitive user information when accessed with valid Blade-Auth bearer token. | |
| Impact: | Authenticated attackers can access sensitive user information including usernames, roles, and other personal data stored in the system. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://gitee.com/smallc/SpringBlade |
|
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |