偶然发现的bug————越权访问漏洞追溯

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