Enviar #745515: yeqifu warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controlsinformación

Título	yeqifu warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls
Descripción	Department create/update/delete endpoints have no authorization checks. Any logged-in user can modify organizational structure, which can affect user grouping, reporting lines, and potentially access controls that depend on departments without any access controls
Fuente	⚠️ https://github.com/yeqifu/warehouse/issues/57
Usuario	AliceS614 (UID 94277)
Sumisión	2026-01-23 10:47 (hace 4 meses)
Moderación	2026-02-06 15:16 (14 days later)
Estado	Aceptado
Entrada de VulDB	344681 [yeqifu warehouse hasta aaf29962ba407d22d991781de28796ee7b4670e4 Department Management DeptController.java addDept/updateDept/deleteDept escalada de privilegios]
Puntos	17

Do you want to use VulDB in your project?

Use the official API to access entries easily!