Translations:GitLab Graphql郵箱信息洩露漏洞 CNVD-2021-14193/4/zh-Hant

From PwnWiki

Revision as of 16:08, 9 March 2021 by FuzzyBot (talk | contribs) (Importing a new version from external source)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

查看完報告後發現漏洞利用需要有賬號用戶名，在不知道的情況下無法獲取郵箱，在Graphql官網查看得知可以通過另一個構造的語句一次性返回所有的用戶名和郵箱

Retrieved from "https://pwnwiki.com/index.php?title=Translations:GitLab_Graphql郵箱信息洩露漏洞_CNVD-2021-14193/4/zh-Hant&oldid=276"