1. Critical Security Flaw in Chat Platform: Any User Can Ban Others Due to Missing Authorization Check
A critical security vulnerability has been identified in a chat platform's backend, allowing any authenticated user to ban any other user from any room. The flaw resides in the `CreateBan` handler, which processes ban requests without verifying the requester's administrative permissions. This absence of an authorizatio...