Incorrect access control in the component orderService.queryObject of platform v1.0.0 allows attackers to access sensitive information via a crafted request.Referenceshttps://gitee.com/fuyang_lipengjun/platformhttps://gist.github.com/xueye0629/620e4e0cc0f23c903736971e6375f00e
