Soumettre #643837: roncoo roncoo-pay latest broken function level authorisationinformation

Titre	roncoo roncoo-pay latest broken function level authorisation
Description	Title: Broken Function Level Authorization in UserInfoController PoC: A direct GET or POST request to /user/info/list without proper authentication or authorization allows access to the user list functionality.
La source	⚠️ https://www.cnblogs.com/aibot/p/19063475
Utilisateur	Anonymous User
Soumission	29/08/2025 06:00 (il y a 8 mois)
Modérer	11/09/2025 19:22 (14 days later)
Statut	Accepté
Entrée VulDB	323650 [roncoo roncoo-pay /user/info/list authentification faible]
Points	16

Want to know what is going to be exploited?

We predict KEV entries!