Submit #754430: warehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controlsinfo

Titlewarehouse latest(git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls
DescriptionInport and outport endpoints do not enforce permissions. Attackers can forge inventory movements, adjust quantities, or delete records, leading to stock inaccuracies, financial discrepancies, and possible abuse of procurement/return workflows. This can lead to inaccurate stock levels, financial discrepancies, and abuse of procurement/return workflows.
Source⚠️ https://github.com/yeqifu/warehouse/issues/62
User
 AliceS614 (UID 94277)
Submission02/09/2026 05:55 (5 months ago)
Moderation02/20/2026 10:01 (11 days later)
StatusAccepted
VulDB entry347087 [yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4 Inport Endpoint InportController.java addInport/updateInport/deleteInport access control]
Points18

Do you want to use VulDB in your project?

Use the official API to access entries easily!