Authentication Bypass

github.com/KubeOperator/KubeOperator is vulnerable to Authentication Bypass. The vulnerability exists because the `V1` function of `v1api.go` does not properly handle the online application routing permissions, allowing an attacker to bypass the system’s preset permission settings to access some API interfaces, leading sensitive information disclosure.Read More