Submit #686531: mall <=1.0.3 Improper Control of Resource Identifiersinfo

Titlemall <=1.0.3 Improper Control of Resource Identifiers
DescriptionThe mall application contains an authorization bypass vulnerability, which allows an attacker to manipulate order payments using another user’s order ID.
Source⚠️ https://github.com/Hwwg/cve/issues/14
User
 huangweigang (UID 88993)
Submission10/31/2025 08:34 (8 months ago)
Moderation11/15/2025 07:19 (15 days later)
StatusDuplicate
VulDB entry332323 [macrozheng mall-swarm up to 1.0.3 /order/paySuccess orderID improper authorization]
Points0

Do you want to use VulDB in your project?

Use the official API to access entries easily!