VYPR

Maven package

org.apache.pinot/pinot-broker

pkg:maven/org.apache.pinot/pinot-broker

Vulnerabilities (1)

  • CVE-2024-56325Apr 1, 2025
    affected < 1.3.0fixed 1.3.0

    Authentication Bypass Issue If the path does not contain / and contain., authentication is not required. Expected Normal Request and Response Example curl -X POST -H "Content-Type: application/json" -d {\"username\":\"hack2\",\"password\":\"hack\",\"component\":\"CONTROLLER\",