| शीर्षक | warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls |
|---|
| विवरण | Several cache-related endpoints (including delete/remove/sync) do not enforce authorization checks. As a result, any authenticated user can clear caches or trigger cache synchronizations, regardless of role or ownership. Proper access control should be enforced so only privileged roles can perform cache maintenance actions |
|---|
| स्रोत | ⚠️ https://github.com/yeqifu/warehouse/issues/60 |
|---|
| उपयोगकर्ता | AliceS614 (UID 94277) |
|---|
| सबमिशन | 09/02/2026 05:52 AM (3 महीनों पहले) |
|---|
| संयम | 20/02/2026 10:01 AM (11 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 347085 [yeqifu warehouse तक aaf29962ba407d22d991781de28796ee7b4670e4 Cache Sync CacheController.java deleteCache/removeAllCache/syncCache अधिकार वृद्धि] |
|---|
| अंक | 18 |
|---|