Enviar #754430: warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controlsinformación

Títulowarehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls
DescripciónInport and outport endpoints do not enforce permissions. Attackers can forge inventory movements, adjust quantities, or delete records, leading to stock inaccuracies, financial discrepancies, and possible abuse of procurement/return workflows. This can lead to inaccurate stock levels, financial discrepancies, and abuse of procurement/return workflows.
Fuente⚠️ https://github.com/yeqifu/warehouse/issues/62
Usuario
 AliceS614 (UID 94277)
Sumisión2026-02-09 05:55 (hace 5 meses)
Moderación2026-02-20 10:01 (11 days later)
EstadoAceptado
Entrada de VulDB347087 [yeqifu warehouse hasta aaf29962ba407d22d991781de28796ee7b4670e4 Inport Endpoint InportController.java addInport/updateInport/deleteInport escalada de privilegios]
Puntos18

Do you know our Splunk app?

Download it now for free!