Submit #686529: mall <=1.0.3 Improper Control of Resource Identifiersinfo

Titelmall <=1.0.3 Improper Control of Resource Identifiers
BeschreibungThe mall application contains an authorization bypass vulnerability, allowing attackers to cancel orders on behalf of other users.
Quelle⚠️ https://github.com/Hwwg/cve/issues/12
Benutzer
 huangweigang (UID 88993)
Einreichung31.10.2025 08:32 (vor 5 Monaten)
Moderieren15.11.2025 07:19 (15 days later)
StatusDuplikat
VulDB Eintrag332322 [macrozheng mall-swarm/mall bis 1.0.3 /order/cancelOrder orderId erweiterte Rechte]
Punkte0

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!