Exploitation Summary
CVE-2022-32430 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
Nuclei Templates (1)
Lin CMS Spring Boot - Default JWT Token
HIGHVERIFIEDby DhiyaneshDK
Shodan:
http.html:"心上无垢,林间有风"
FOFA:
body="心上无垢,林间有风"
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.mesec.cn/archives/278
Exploit, Third Party Advisory x_refsource_misc
https://www.mesec.cn/archives/277
Scores
CVSS v3
7.5
EPSS
0.0344
EPSS Percentile
87.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (2)
io.github.talelin/lin-cms-core
0Maven
talelin/lin-cms-spring-boot
0.2.1
Published
Jul 21, 2022
Tracked Since
Feb 18, 2026