Insecure Direct Object Reference (IDOR) Vulnerability in Bus Pass Management System v1.0 Allows Unauthorized Access to Sensitive Information

Insecure Direct Object Reference (IDOR) Vulnerability in Bus Pass Management System v1.0 Allows Unauthorized Access to Sensitive Information

CVE-2022-29008 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information.

Learn more about our Web Application Penetration Testing UK.