3455 matches found
CVE-2023-7049 Custom Field For WP Job Manager <= 1.2 - Insecure Direct Object Reference to Sensitive Information Exposure via Shortcode
The Custom Field For WP Job Manager plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.2 via the the 'cmfieldshow' shortcode due to missing validation on the 'jobid' user controlled key. This makes it possible for authenticated attackers...
WordPress Custom Field For WP Job Manager plugin <= 1.2 - Insecure Direct Object Reference to Sensitive Information Exposure via Shortcode vulnerability
Insecure Direct Object Reference to Sensitive Information Exposure via Shortcode vulnerability discovered by Francesco Carlucci in WordPress Plugin Custom Field For WP Job Manager versions = 1.2...
Bhojon Restaurant Management System 3.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Bhojon restaurant management system v3.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
Farmacia Gama 1.0 Insecure Direct Object Reference
============================================================================================================================================= | Title : Farmacia Gama v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
Bhojon Restaurant Management System 2.8 Insecure Direct Object Reference
==================================================================================================================================== | Title : Bhojon restaurant management system v2.9 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
AccPack Buzz 1.0 Insecure Direct Object Reference
============================================================================================================================================= | Title : AccPack Buzz v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vend...
AccPack Cop 1.0 Insecure Direct Object Reference
============================================================================================================================================= | Title : AccPack Cop v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...
CVE-2024-6357
Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence...
CVE-2024-6357
Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence...
CVE-2024-6357
CVE-2024-6357 is an Insecure Direct Object Reference vulnerability in OpenText ArcSight Intelligence. Public records show CVSS v3.1 metrics with high impact (C/H/I/A all high) and network-based access with low attack complexity and no user interaction required. Some connected sources (e.g., PT-20...
CVE-2024-6357 Insecure Direct Object Reference vulnerability
Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence...
CVE-2024-6357 Insecure Direct Object Reference vulnerability
Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence...
OpenText ArcSight Intelligence 安全漏洞
OpenText ArcSight Intelligence is an advanced threat detection tool from OpenText Canada. A security vulnerability exists in OpenText ArcSight Intelligence that stems from the presence of an unsafe direct object reference vulnerability...
AccPack Khanepani 1.0 Insecure Direct Object Reference
============================================================================================================================================= | Title : AccPack Khanepani v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
Bhojon Restaurant Management System 2.7 Insecure Direct Object Reference
==================================================================================================================================== | Title : Bhojon restaurant management system v2.7 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
SIM Wisuda 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : SIM Wisuda v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
Webdenim AppUI 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Webdenim AppUI v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
UBM CMS 1.2 Insecure Direct Object Reference
==================================================================================================================================== | Title : UBM CMS v1.2 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.1 64 bits | | Vendor :...
Insecure Direct Object Reference (IDOR)
org.apache.streampark, streampark is vulnerable to Insecure Direct Object Reference IDOR. The vulnerability is due to insufficient access control due to improper handling of authorization tokens, allowing attackers to manually request and view all users' flink information, including executeSQL an...
Agop CMS 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Agop CMS v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...