CVE-2026-57950 - ruoyi-vue-pro - Incorrect Permission Namespace in ErpSaleOrderController
CVE ID :CVE-2026-57950 Published : June 29, 2026, 5:20 p.m. | 1 hour, 52 minutes ago Description :ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSaleOrderController that allows attackers with erp:sale-out permissions to gain...