1. Authorization Bypass in AdminController Exposes Privilege Escalation Risk
A critical authorization bypass vulnerability has been identified in the AdminController, where administrative authorization checks could be conditionally circumvented through parameter manipulation. The flaw allowed non-admin users to perform privileged operations by exploiting how the `admin_param` method handled spe...