Submit #695943: youlai-mall latest Improper Control of Resource Identifiers
| Title | youlai-mall latest Improper Control of Resource Identifiers |
|---|---|
| Description | youlai-mall improper access control on App order deletion allows horizontal privilege escalation via orderId |
| Source | ⚠️ https:/ |
| User | huangweigang (UID 88993) |
| Submission | 11/15/2025 07:39 (5 months ago) |
| Moderation | 12/05/2025 09:35 (20 days later) |
| Status | Accepted |
| VulDB entry | 334476 [youlaitech youlai-mall 1.0.0/2.0.0 /app-api/v1/orders/ orderId improper control of dynamically-identified variables] |
| Points | 14 |