| Titel | youlai-mall latest Improper Control of Resource Identifiers |
|---|
| Beschreibung | The youlai-mall application has an improper access control vulnerability that allows unauthorized users to query other users’ addresses. |
|---|
| Quelle | ⚠️ https://github.com/Hwwg/cve/issues/18 |
|---|
| Benutzer | huangweigang (UID 88993) |
|---|
| Einreichung | 13.11.2025 14:11 (vor 7 Monaten) |
|---|
| Moderieren | 04.12.2025 18:12 (21 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 334367 [youlaitech youlai-mall 1.0.0/2.0.0 addresses getById/updateAddress/deleteAddress erweiterte Rechte] |
|---|
| Punkte | 15 |
|---|