| 제목 | CodeGenieApp serverless-express <=4.17.1 Broken Object Level Authorization |
|---|
| 설명 | The TodoList management system contains a critical Broken Object Level Authorization (BOLA) vulnerability (also known as IDOR) due to a missing ownership model in the database schema. The TodoDB table lacks a userId field, preventing any ownership association between lists and their creators. Consequently, if an attacker obtains a valid listId (e.g., via leaked URLs, Referer headers, or chained with the previously reported Property Injection vulnerability), they can use their own authenticated session to view, modify, or permanently delete any other user's todo lists, resulting in a complete compromise of data confidentiality, integrity, and availability. |
|---|
| 원천 | ⚠️ https://github.com/AnalogyC0de/public_exp/issues/20 |
|---|
| 사용자 | Ana10gy (UID 93358) |
|---|
| 제출 | 2026. 03. 02. AM 03:57 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 03. 14. PM 01:57 (12 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 351078 [CodeGenieApp serverless-express 까지 4.17.1 API Endpoint TodoList.ts userId 권한 상승] |
|---|
| 포인트들 | 20 |
|---|