LinkAce: Data Exfiltration via Export Functions Allow Access to All Users' Private Links

LinkAce is a self-hosted archive to collect website links. Versions 2.3.1 and below allow any authenticated user to export the entire database of links from all users in the system, including private links that should only be accessible to their owners. The HTML and CSV export functions in the ExportController class retrieve all links without applying any ownership or visibility filtering, effectively bypassing all access controls implemented elsewhere in the application. This issue is fixed in version 2.4.0.

N/A

信息暴露

LinkAce 访问控制错误漏洞

LinkAce是Kevin Woblick个人开发者的一个自托管档案库，用于收集您最喜爱的网站的链接。 LinkAce 2.3.1及之前版本存在访问控制错误漏洞，该漏洞源于ExportController类中的HTML和CSV导出功能未应用所有权或可见性过滤，可能导致绕过访问控制。

N/A

N/A