Pratik Khalane

1 exploit Active since Jul 2021
CVE-2021-35337 EXPLOITDB MEDIUM text WRITEUP
Phone Shop Sales Management System 1.0 - Insecure Direct Object Reference via ID Parameter
Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter.
CVSS 4.3