| Titre | crmeb CRMEB-KY v5.6.1 Horizontal Overreach (IDOR) - Modify/delete user address |
|---|
| Description | When editAddress is called to update an address with a given $id, the code always believes that the address belongs to the currently authenticated user, regardless of its true owner. An attacker can simply set the id field in their request to the ID of any address in the system, and they will be able to modify or delete it. |
|---|
| La source | ⚠️ https://github.com/August829/Yu/blob/main/58ead8e7e08bfb014.md |
|---|
| Utilisateur | Yu Bao (UID 88956) |
|---|
| Soumission | 30/08/2025 08:56 (il y a 8 mois) |
|---|
| Modérer | 13/09/2025 11:46 (14 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 323825 [CRMEB jusqu’à 5.6.1 UserAddressServices.php editAddress ID élévation de privilèges] |
|---|
| Points | 19 |
|---|