| タイトル | PHPGurukul Doctor Appointment Management System 1.0 Insecure direct object references(IDOR) |
|---|
| 説明 | The Doctor Appointment Management System suffers from an IDOR vulnerability, allowing unauthorized users to access and manipulate appointments assigned to different doctors without proper authorization. Exploitation of this flaw could lead to the compromise of sensitive user information and poses a significant security risk to the application. Urgent action is needed to address this vulnerability and ensure the security of the system. |
|---|
| ソース | ⚠️ https://github.com/Sospiro014/zday1/blob/main/doctor_appointment_management_system_idor.md |
|---|
| ユーザー | SoSPiro (UID 67134) |
|---|
| 送信 | 2024年04月27日 08:20 (2 年 ago) |
|---|
| モデレーション | 2024年04月27日 08:39 (20 minutes later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 262226 [PHPGurukul Doctor Appointment Management System 1.0 view-appointment-detail.php editid 特権昇格] |
|---|
| ポイント | 20 |
|---|