A vulnerability, which was classified as critical , was found in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948 . This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction Endpoint . Such manipulation leads to improper authorization. This vulnerability is referenced as CVE-2026-11521 . It is possible to launch the attack remotely. Furthermore, an explo