| Название | PHPGurukul Doctor Appointment Management System 1.0 Insecure direct object references(IDOR) |
|---|
| Описание | The Doctor Appointment Management System suffers from an IDOR vulnerability, allowing unauthorized users to access and manipulate appointments assigned to different doctors without proper authorization. Exploitation of this flaw could lead to the compromise of sensitive user information and poses a significant security risk to the application. Urgent action is needed to address this vulnerability and ensure the security of the system. |
|---|
| Источник | ⚠️ https://github.com/Sospiro014/zday1/blob/main/doctor_appointment_management_system_idor.md |
|---|
| Пользователь | SoSPiro (UID 67134) |
|---|
| Представление | 27.04.2024 08:20 (2 лет назад) |
|---|
| Модерация | 27.04.2024 08:39 (20 minutes later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 262226 [PHPGurukul Doctor Appointment Management System 1.0 view-appointment-detail.php editid эскалация привилегий] |
|---|
| Баллы | 20 |
|---|