Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

CVEs (1,771)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-2713 1Rental Module Project 1Rental Module Nov 21, 2024 May 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Authentication Abuse, Authentication Bypass.This issue affects Rental...Show more Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Authentication Abuse, Authentication Bypass.This issue affects Rental Module: before 23.05.15. Show less
CVE-2023-2276 1Wclovers 1Wcfm Membership Apr 8, 2026 May 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 2.10.7. This is due to the plugin provid...Show more The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 2.10.7. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for unauthenticated attackers to change user passwords and potentially take over administrator accounts.Show less
CVE-2023-2548 1Metagauss 1Registrationmagic Apr 8, 2026 May 16, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 The RegistrationMagic plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 5.2.0.5. This is due to the plugin providing user-controlled access to objects, letting a us...Show more The RegistrationMagic plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 5.2.0.5. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for authenticated attackers, with administrator-level permissions and above, to change user passwords and potentially take over super-administrator accounts in multisite setup.Show less
CVE-2023-31182 1Easytor 1Easytor Nov 21, 2024 May 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 EasyTor Applications – Authorization Bypass - EasyTor Applications may allow authorization bypass via unspecified method.
CVE-2023-30216 1Newbee Mall Project 1Newbee Mall Jan 29, 2025 May 4, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Insecure permissions in the updateUserInfo function of newbee-mall before commit 1f2c2dfy allows attackers to obtain user account information.
CVE-2023-30550 1Metersphere 1Metersphere Jan 29, 2025 May 4, 2023 N/A· v4 4.5 MEDIUM· v3 N/A· v2 MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. This IDOR vulnerability allows the administrator of a project t...Show more MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. This IDOR vulnerability allows the administrator of a project to modify other projects under the workspace. An attacker can obtain some operating permissions. The issue has been fixed in version 2.9.0.Show less
CVE-2023-28656 2F5 Netapp 5Cloud Backup Nginx Api Connectivity ManagerNginx Instance Manager+2 more May 19, 2025 May 3, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 NGINX Management Suite may allow an authenticated attacker to gain access to configuration objects outside of their assigned environment. Note: Software versions which have reached End of Technical Support (EoTS) are...Show more NGINX Management Suite may allow an authenticated attacker to gain access to configuration objects outside of their assigned environment. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.Show less
CVE-2023-1911 1Creativethemes 1Blocksy Companion Jan 30, 2025 May 2, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The Blocksy Companion WordPress plugin before 1.8.82 does not ensure that posts to be accessed via a shortcode are already public and can be viewed, allowing any authenticated users, such as subscriber to access draft po...Show more The Blocksy Companion WordPress plugin before 1.8.82 does not ensure that posts to be accessed via a shortcode are already public and can be viewed, allowing any authenticated users, such as subscriber to access draft posts for exampleShow less
CVE-2023-1125 1Wpruby 1Ruby Help Desk Jan 30, 2025 May 2, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The Ruby Help Desk WordPress plugin before 1.3.4 does not ensure that the ticket being modified belongs to the user making the request, allowing an attacker to close and/or add files and replies to tickets other than the...Show more The Ruby Help Desk WordPress plugin before 1.3.4 does not ensure that the ticket being modified belongs to the user making the request, allowing an attacker to close and/or add files and replies to tickets other than their own.Show less
CVE-2023-2260 1Alf 1Alf Nov 21, 2024 Apr 24, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Authorization Bypass Through User-Controlled Key in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304.
CVE-2022-48313 1Huawei 2Emui Harmonyos Feb 6, 2025 Apr 16, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.
CVE-2018-17455 1Gitlab 1Gitlab Feb 6, 2025 Apr 15, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was discovered in GitLab Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Attackers could obtain sensitive information about group names, avatars, LDAP settings, and descriptions...Show more An issue was discovered in GitLab Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Attackers could obtain sensitive information about group names, avatars, LDAP settings, and descriptions via an insecure direct object reference to the "merge request approvals" feature.Show less
CVE-2018-17449 1Gitlab 1Gitlab Feb 7, 2025 Apr 15, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Remote attackers could obtain sensitive information about issues, comments, and project ti...Show more An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Remote attackers could obtain sensitive information about issues, comments, and project titles via events API insecure direct object reference.Show less
CVE-2022-45175 1Liveboxcloud 1Vdesk Feb 7, 2025 Apr 14, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue was discovered in LIVEBOX Collaboration vDesk through v018. An Insecure Direct Object Reference can occur under the 5.6.5-3/doc/{ID-FILE]/c/{N]/{C]/websocket endpoint. A malicious unauthenticated user can access...Show more An issue was discovered in LIVEBOX Collaboration vDesk through v018. An Insecure Direct Object Reference can occur under the 5.6.5-3/doc/{ID-FILE]/c/{N]/{C]/websocket endpoint. A malicious unauthenticated user can access cached files in the OnlyOffice backend of other users by guessing the file ID of a target file.Show less
CVE-2023-1417 1Gitlab 1Gitlab Feb 11, 2025 Apr 5, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victi...Show more An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.Show less
CVE-2023-0967 1Imaworldhealth 1Bhima Feb 13, 2025 Apr 5, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Bhima version 1.27.0 allows an attacker authenticated with normal user permissions to view sensitive data of other application users and data that should only be viewed by the administrator. This is possible because the...Show more Bhima version 1.27.0 allows an attacker authenticated with normal user permissions to view sensitive data of other application users and data that should only be viewed by the administrator. This is possible because the application is vulnerable to IDOR, it does not properly validate user permissions with respect to certain actions the user can perform.Show less
CVE-2023-1750 1Getnexx 4Nxal 100 Firmware Nxg 100b FirmwareNxg 200 Firmware+1 more Nov 21, 2024 Apr 4, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could retrieve device history, set device settings, and retrieve device informa...Show more The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could retrieve device history, set device settings, and retrieve device information.Show less
CVE-2023-1749 1Getnexx 4Nxal 100 Firmware Nxg 100b FirmwareNxg 200 Firmware+1 more Nov 21, 2024 Apr 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could send API requests that the affected devices would execute.
CVE-2023-26984 1Peppermint 1Peppermint Feb 18, 2025 Mar 29, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 An issue in the password reset function of Peppermint v0.2.4 allows attackers to access the emails and passwords of the Tickets page via a crafted request.
CVE-2023-24842 1Hgiga 1Oaklouds Mailsherlock Nov 21, 2024 Mar 27, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 HGiga MailSherlock has vulnerability of insufficient access control. An unauthenticated remote user can exploit this vulnerability to access partial content of another user’s mail by changing user ID and mail ID within U...Show more HGiga MailSherlock has vulnerability of insufficient access control. An unauthenticated remote user can exploit this vulnerability to access partial content of another user’s mail by changing user ID and mail ID within URL.Show less

Previous 1...707172...89 Next