제출 #641729: macrozheng mall ≤ v1.0.3 IDOR정보

제목macrozheng mall ≤ v1.0.3 IDOR
설명In mall versions up to v1.0.3, the /order/cancelUserOrder endpoint contains a horizontal privilege escalation vulnerability. This allows a user to cancel another user’s order, leading to unauthorized operations.
원천⚠️ https://github.com/ez-lbz/poc/issues/46
사용자
 ez-lbz (UID 87033)
제출2025. 08. 26. AM 09:27 (10 개월 ago)
모더레이션2025. 09. 02. PM 02:49 (7 days later)
상태수락
VulDB 항목322182 [macrozheng mall 까지 1.0.3 /order/cancelUserOrder cancelOrder orderId 권한 상승]
포인트들16

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!