JWT密钥硬编码可能导致任意用户登录

在.env文件 里JWT Token硬编码。

https://github.com/huanghanzhilian/c-shopping/blob/1588741fe7631fd2712280dabce02253aeba5e99/.env#L3

以 http://shop.huanghanlian.com/ 为例，可以任意构造一个合法的JWT。

![image](https://github.com/huanghanzhilian/c-shopping/assets/29408109/0f211bf0-c91c-49f1-936e-7b664eb9d771)

JWT里由userid组成，userid是MongoDB的ObjectID， Object  ID可以预测，见 https://book.hacktricks.xyz/v/cn/network-services-pentesting/27017-27018-mongodb#mongo-objectid-yu-ce 。 


修复建议：
- 不使用硬编码的JWT密钥，项目初始化时随机生成

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

JWT密钥硬编码可能导致任意用户登录 #3

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

JWT密钥硬编码可能导致任意用户登录 #3

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions