漏洞关键信息 Title detronetdip E-commerce 1.0 Access Control Violation Severity CRITICAL (9.8) CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Bug Type CWE-306: Missing Authentication for Critical Function Description The backend scripts responsible for creating new User and Seller accounts completely lack authentication or authorization checks. These files are directly accessible via HTTP requests (Admin/assets/backend/...). Vulnerable Files Admin/assets/backend/seller/add_seller.php Admin/assets/backend/user/add_user.php Vulnerable Code Analysis File: Admin/assets/backend/seller/add_seller.php - ; - No session_start() is called to resume a session. - No check is performed to verify if $_SESSION['ADMIN_ID'] is set. - The code proceeds directly to database insertion. - - - The attacker-supplied data is inserted directly into the 'sellers' table.