5 matches found
EUVD-2025-30793
Malicious code in bioql PyPI...
CVE-2025-55886
An Insecure Direct Object Reference IDOR vulnerability was discovered in ARD. The flaw exists in the feuid parameter of the payment history API endpoint. An authenticated attacker can manipulate this parameter to access the payment history of other users without authorization...
CVE-2025-55886
An Insecure Direct Object Reference IDOR vulnerability was discovered in ARD. The flaw exists in the feuid parameter of the payment history API endpoint. An authenticated attacker can manipulate this parameter to access the payment history of other users without authorization...
CVE-2025-55886
CVE-2025-55886 concerns ARD. Affected component is the payment history API endpoint where the fe_uid parameter is used to fetch a user’s payment history. The underlying issue is an Insecure Direct Object Reference (IDOR) allowing an authenticated attacker to manipulate fe_uid to access other user...
ARD GEC en Ligne 安全漏洞
ARD GEC en Ligne is an online service portal of ARD France. A security vulnerability exists in ARD GEC en Ligne that stems from an insecure direct object reference to the feuid parameter in the payment history API endpoint, which could lead to unauthorized access to another user's payment history...