CVE-2026-11521
MediumCVSS 6.3Summary
A vulnerability has been detected in the Mohammed-eid35 bank management system affecting an unknown part of the TransactionController.java file. This manipulation leads to improper authorization, allowing for remote attacks.
Risk Assessment
This vulnerability poses a risk of unauthorized access to the system, potentially leading to serious breaches of customer data security.
Recommendation
It is recommended to update the system to the latest version as soon as possible and to monitor for any unauthorized access attempts.
Original NVD description (English source)
A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction Endpoint. Such manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The project was informed of the problem early through an issue report but has not responded yet.

