WordPress JobBoard Job listing plugin Plugin <= 1.2.8 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Hoang Tuan Kiet in WordPress Plugin JobBoard Job listing versions = 1.2.8...

CVE-2025-31867 WordPress JS Job Manager Plugin <= 2.0.2 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in JoomSky JS Job Manager js-jobs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Job Manager: from n/a through = 2.0.2...

CVE-2025-31867 WordPress JS Job Manager Plugin <= 2.0.2 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in JoomSky JS Job Manager js-jobs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Job Manager: from n/a through = 2.0.2...

CVE-2025-31833 WordPress JobBoard Job listing plugin Plugin <= 1.2.8 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in themeglow JobBoard Job listing job-board-light allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobBoard Job listing: from n/a through = 1.2.8...

CVE-2025-31833

CVE-2025-31833 describes an Authorization bypass via a user-controlled key in the Themeglow JobBoard Job Listing WordPress plugin, affecting the JobBoard Job listing plugin (vendor/themeglow) from n/a through 1.2.7. The accompanying metrics show CVSS 3.1 (base score 4.9, MEDIUM), with vector: AV:...

WordPress Sliced Invoices plugin <= 3.10.0 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Manab Jyoti Dowarah in WordPress Plugin Sliced Invoices versions = 3.10.0...

WordPress WPCargo Track & Trace plugin <= 8.0.2 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by hunter85 in WordPress Plugin WPCargo Track & Trace versions = 8.0.2...

CVE-2025-31609 WordPress WPCargo Track & Trace plugin <= 8.0.2 - Insecure Direct Object References (IDOR) vulnerability

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace wpcargo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCargo Track & Trace: from n/a through = 8.0.2...

CVE-2025-31609 WordPress WPCargo Track & Trace plugin <= 7.0.6 - Insecure Direct Object References (IDOR) vulnerability

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPCargo Track & Trace: from n/a through 7.0.6...

WordPress Radius Blocks plugin <= 2.2.1 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Plugin Radius Blocks versions = 2.2.1...

CVE-2025-3014

Insecure Direct Object References IDOR in access control in Tracking 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...

CVE-2025-3013

Insecure Direct Object References IDOR in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...

CVE-2025-3014 Insecure direct object references (IDOR) in NightWolf Penetration Platform

Insecure Direct Object References IDOR in access control in Tracking 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...

CVE-2025-3014

The CVE-2025-3014 entry concerns NightWolf Penetration Testing Tracking version 2.1.4, where an Improper Access Control leads to Insecure Direct Object References (IDOR). The vulnerability arises from allowing manipulation of request parameters or object references to access unauthorized data. Pu...

CVE-2025-3013 Insecure direct object references (IDOR) in NightWolf Penetration Platform

Insecure Direct Object References IDOR in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...

CVE-2025-3013

CVE-2025-3013 affects NightWolf Penetration Testing Customer Portal prior to 2.1.4 (NightWolf Penetration Platform). The issue is an Insecure Direct Object References (IDOR) in access control, enabling an attacker to access by manipulating request parameters or object references. According to the...

CVE-2025-3013 Insecure direct object references (IDOR) in NightWolf Penetration Platform

Insecure Direct Object References IDOR in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...

PT-2025-13650 · Tracing · Tracing

Name of the Vulnerable Software and Affected Versions: Tracking version 2.1.4 Description: The issue is related to Insecure Direct Object References IDOR in access control, allowing an attacker to access sensitive information by manipulating request parameters or object references. This can be...

PT-2025-13649 · Unknown · Customer Portal

Name of the Vulnerable Software and Affected Versions: Customer Portal versions prior to 2.1.4 Description: The issue is related to Insecure Direct Object References IDOR in access control, allowing an attacker to access sensitive information by manipulating request parameters or object reference...

CVE-2025-30777 WordPress Support Genix plugin <= 1.4.11 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in DevItems Support Genix support-genix-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Support Genix: from n/a through = 1.4.11...