Invia #754430: warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controlsinformazioni

Titolowarehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls
DescrizioneInport and outport endpoints do not enforce permissions. Attackers can forge inventory movements, adjust quantities, or delete records, leading to stock inaccuracies, financial discrepancies, and possible abuse of procurement/return workflows. This can lead to inaccurate stock levels, financial discrepancies, and abuse of procurement/return workflows.
Fonte⚠️ https://github.com/yeqifu/warehouse/issues/62
Utente
 AliceS614 (UID 94277)
Sottomissione09/02/2026 05:55 (5 mesi fa)
Moderazione20/02/2026 10:01 (11 days later)
StatoAccettato
Voce VulDB347087 [yeqifu warehouse fino a aaf29962ba407d22d991781de28796ee7b4670e4 Inport Endpoint InportController.java addInport/updateInport/deleteInport escalationi di privilegi]
Punti18

Want to know what is going to be exploited?

We predict KEV entries!