PT-2026-1184 · Unknown · Yeqifu Warehouse
5I1Encee
·
Publicado
2026-01-04
·
Atualizado
2026-02-17
·
CVE-2026-0574
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
yeqifu warehouse (affected versions not specified)
Description
A weakness exists that leads to improper authorization. The issue affects the
saveUserRole function within the file warehousesrcmainjavacomyeqifusyscontrollerUserController.java of the Request Handler component. The attack can be carried out remotely. The exploit is publicly available.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Improper Authorization
Incorrect Privilege Assignment
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Yeqifu Warehouse