CVE-2024-32166
April 19, 2024, 4:19 p.m.
Tags
Product(s) Impacted
Webid
- 1.2.1
Description
Webid v1.2.1 suffers from an Insecure Direct Object Reference (IDOR) - Broken Access Control vulnerability, allowing attackers to buy now an auction that is suspended (horizontal privilege escalation).
Weaknesses
Date
Published: April 19, 2024, 2:15 p.m.
Last Modified: April 19, 2024, 4:19 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org
References
https://github.com/
cve@mitre.org