Springboot-OpenAI-ChatGPT Improper Authorization Vulnerability

A critical improper authorization vulnerability has been identified in the Springboot-OpenAI-ChatGPT application, specifically in version e84f6f5. The issue arises in the User Handler component, within the submit function of the file /api/blade-user/submit. This vulnerability allows ordinary users to create super administrator accounts by exploiting the lack of permission checks, thereby exceeding their authorized privileges. The vulnerability can be exploited remotely, without any authentication requirements.

Impact

Exploitation of this vulnerability leads to unauthorized privilege escalation, allowing users to create super administrator accounts.

Reproduction

To reproduce this vulnerability, log into the application as a regular user. Then, send a request to the /api/blade-user/submit endpoint. Since the application does not perform any authorization checks on this endpoint, it is possible to create new administrator accounts, even with a standard user account.