CVE-2026-2852

Name of the Vulnerable Software and Affected Versions yeqifu warehouse (affected versions not specified)

Description A security issue exists in yeqifu warehouse related to improper access controls. The issue impacts the addSales, updateSales, and deleteSales functions within the SalesController.java file located in the datasetreposwarehousesrcmainjavacomyeqifubuscontrollerSalesController.java component, specifically affecting the Sales Endpoint. This allows for remote exploitation. The exploit is publicly available. The project has been notified but has not yet responded.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.