[Crash] Unchecked user.loadout.primaryId.length in getUserData

## Summary
Services server crashes when `user.loadout.primaryId` is undefined during account data processing.

## Affected Code
`server-services/src/data_management/accountManagement.js:99`

```javascript
user.loadout = JSON.parse(user.loadout);
for (var i = 0; i < user.loadout.primaryId.length; i++) {
  // CRASH if user.loadout.primaryId is undefined
```

## Vulnerability
If database contains corrupted loadout JSON or schema mismatch.

## Impact
- Services server crash on user data fetch
- Denial of service for authentication

## Proof of Concept
Corrupt user loadout in DB to missing `primaryId` field.

## Recommended Fix
```javascript
for (var i = 0; i < (user.loadout?.primaryId?.length || 0); i++) {
```

## References
- PR: https://github.com/onlypuppy7/LegacyShell/pull/43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Crash] Unchecked user.loadout.primaryId.length in getUserData #58

Summary

Affected Code

Vulnerability

Impact

Proof of Concept

Recommended Fix

References

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

[Crash] Unchecked user.loadout.primaryId.length in getUserData #58

Description

Summary

Affected Code

Vulnerability

Impact

Proof of Concept

Recommended Fix

References

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions