Enviar #686530: mall <=1.0.3 Improper Control of Resource Identifiersinformación

Títulomall <=1.0.3 Improper Control of Resource Identifiers
DescripciónThe mall application contains an authorization bypass vulnerability, which allows an attacker to cancel orders using another user’s order ID.
Fuente⚠️ https://github.com/Hwwg/cve/issues/13
Usuario
 huangweigang (UID 88993)
Sumisión2025-10-31 08:33 (hace 5 meses)
Moderación2025-11-15 07:19 (15 days later)
EstadoDuplicado
Entrada de VulDB332321 [macrozheng mall-swarm/mall hasta 1.0.3 /order/cancelUserOrder orderId escalada de privilegios]
Puntos0

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!