Title: yeqifup repository latest (git commit aaf29962ba407d22d991781de28796ee7b4670e4) Improper Access Controls Description: Log viewing and deletion endpoints lack authorization checks, allowing attackers to access or delete login audit logs, compromise forensic visibility, facilitate malicious activities, disrupt compliance and incident response workflows, enable covering tracks after privilege escalation, and hinder administrators from detecting brute-force attempts, suspicious IP addresses, or abnormal access patterns. Source: https://github.com/yeqifu/warehouse/issues/59 User: AliceS14 (UID 94277) Submission Date: 01/23/2026 10:51 AM Moderation Date: 02/06/2026 03:16 PM Status: Accepted VulDB Entry: 234683 (yeqifu repository up to aaf29962ba407d22d991781de28796ee7b4670e4 Log Info LogininfoController.java loadAllLogininfo/deleteLogininfo/batchDeleteLogininfo improper authorization) Points: 19