TelegAI Insecure Direct Object Reference
TelegAI, a web application for constructing and chatting with AI Characters, is vulnerable to insecure direct object reference in its chat component. An attacker can exploit this IDOR to tamper other users' conversation. Additionally, malicious contents and cross site scripting payloads can be...