제출 #745512: yeqifu warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls정보

제목yeqifu warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls
설명Role create/update/delete endpoints are exposed to any authenticated user. Attackers can delete critical roles, create new privileged roles, or modify existing roles to alter access control for multiple users. This enables broad privilege escalation and operational disruption.
원천⚠️ https://github.com/yeqifu/warehouse/issues/54
사용자
 AliceS614 (UID 94277)
제출2026. 01. 23. AM 10:45 (5 개월 ago)
모더레이션2026. 02. 06. AM 08:57 (14 days later)
상태수락
VulDB 항목344643 [yeqifu warehouse 까지 aaf29962ba407d22d991781de28796ee7b4670e4 Role Management RoleController.java addRole/updateRole/deleteRole 권한 상승]
포인트들17

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!