Enviar #703879: haxxorsid stock-management-system 1.0 Improper Access Controlsinformación

Títulohaxxorsid stock-management-system 1.0 Improper Access Controls
Descripciónhaxxorsid/stock-management-system is an application developed based on MVC pattern, but the application only sets the permission control mechanism in the view layer, and does not set the permission control in the controller layer. As a result, unauthorized users can directly access controller's interface through apis to obtain sensitive application information or perform sensitive operations.
Fuente⚠️ https://github.com/ixpqxi/CVE_LIST/blob/master/stock_management_system/access_control_vulnerability.md
Usuario
 ixpqxi (UID 83247)
Sumisión2025-12-01 03:57 (hace 6 meses)
Moderación2025-12-12 12:14 (11 days later)
EstadoAceptado
Entrada de VulDB336191 [haxxorsid Stock-Management-System hasta fbbbf213e9c93b87183a3891f77e3cc7095f22b0 /api/employees autenticación débil]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!