Soumettre #753969: funadmin v7.1.0-rc4 Insecure Direct Object Referenceinformation

Titrefunadmin v7.1.0-rc4 Insecure Direct Object Reference
DescriptionIn app/frontend/view/login/forget.html, the application checks for the presence of the forget_uid and forget_code cookies. When present, it calls the getMember method with forget_uid as an argument to retrieve user information. Because forget_uid is entirely controllable by the client and lacks proper authorization checks, an authenticated attacker can manipulate this value to access other users’ information, leading to a horizontal authorization bypass (IDOR).
La source⚠️ https://github.com/I4m6da/CVE/issues/1
Utilisateur
 I4m6da (UID 95320)
Soumission07/02/2026 12:54 (il y a 4 mois)
Modérer20/02/2026 19:56 (13 days later)
StatutAccepté
Entrée VulDB347205 [funadmin jusqu’à 7.1.0-rc4 forget.html getMember divulgation d'information]
Points20

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!