Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

CVEs (1,772)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-3589 1Miele 1Appwash Nov 21, 2024 Nov 21, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 An API Endpoint used by Miele's "AppWash" MobileApp in all versions was vulnerable to an authorization bypass. A low privileged, remote attacker would have been able to gain read and partial write access to other users d...Show more An API Endpoint used by Miele's "AppWash" MobileApp in all versions was vulnerable to an authorization bypass. A low privileged, remote attacker would have been able to gain read and partial write access to other users data by modifying a small part of a HTTP request sent to the API. Reading or changing the password of another user was not possible, thus no impact to Availability.Show less
CVE-2022-43492 1Gvectors 1Wpdiscuz Feb 20, 2025 Nov 18, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Auth. (subscriber+) Insecure Direct Object References (IDOR) vulnerability in Comments – wpDiscuz plugin 7.4.2 on WordPress.
CVE-2022-44005 1Backclick 1Backclick Apr 30, 2025 Nov 16, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 An issue was discovered in BACKCLICK Professional 5.9.63. Due to the use of consecutive IDs in verification links, the newsletter sign-up functionality is vulnerable to the enumeration of subscribers' e-mail addresses. F...Show more An issue was discovered in BACKCLICK Professional 5.9.63. Due to the use of consecutive IDs in verification links, the newsletter sign-up functionality is vulnerable to the enumeration of subscribers' e-mail addresses. Furthermore, it is possible to subscribe and verify other persons' e-mail addresses to newsletters without their consent.Show less
CVE-2022-42129 1Liferay 2Digital Experience Platform Liferay Portal Apr 30, 2025 Nov 15, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 An Insecure direct object reference (IDOR) vulnerability in the Dynamic Data Mapping module in Liferay Portal 7.3.2 through 7.4.3.4, and Liferay DXP 7.3 before update 4, and 7.4 GA allows remote authenticated users to vi...Show more An Insecure direct object reference (IDOR) vulnerability in the Dynamic Data Mapping module in Liferay Portal 7.3.2 through 7.4.3.4, and Liferay DXP 7.3 before update 4, and 7.4 GA allows remote authenticated users to view and access form entries via the `formInstanceRecordId` parameter.Show less
CVE-2022-3413 1Gitlab 1Gitlab May 1, 2025 Nov 10, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events...Show more Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should have been restricted to Project Maintainers, Group Owners, and above.Show less
CVE-2022-40206 1Gvectors 1Wpforo Forum Feb 20, 2025 Nov 8, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as private/public.
CVE-2022-40205 1Gvectors 1Wpforo Forum Feb 20, 2025 Nov 8, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as solved/unsolved.
CVE-2021-36906 1Expresstech 1Quiz And Survey Master Feb 20, 2025 Nov 3, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.
CVE-2022-39945 1Fortinet 1Fortimail Nov 21, 2024 Nov 2, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An improper access control vulnerability [CWE-284] in FortiMail 7.2.0, 7.0.0 through 7.0.3, 6.4 all versions, 6.2 all versions, 6.0 all versions may allow an authenticated admin user assigned to a specific domain to acce...Show more An improper access control vulnerability [CWE-284] in FortiMail 7.2.0, 7.0.0 through 7.0.3, 6.4 all versions, 6.2 all versions, 6.0 all versions may allow an authenticated admin user assigned to a specific domain to access and modify other domains information via insecure direct object references (IDOR).Show less
CVE-2022-39018 1M Files 1Hubshare Nov 21, 2024 Oct 31, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Broken access controls on PDFtron data in M-Files Hubshare before 3.3.11.3 allows unauthenticated attackers to access restricted PDF files via a known URL.
CVE-2022-31692 2Netapp Vmware 2Active Iq Unified Manager Spring Security May 6, 2025 Oct 31, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Spring Security, versions 5.7 prior to 5.7.5 and 5.6 prior to 5.6.9 could be susceptible to authorization rules bypass via forward or include dispatcher types. Specifically, an application is vulnerable when all of the f...Show more Spring Security, versions 5.7 prior to 5.7.5 and 5.6 prior to 5.6.9 could be susceptible to authorization rules bypass via forward or include dispatcher types. Specifically, an application is vulnerable when all of the following are true: The application expects that Spring Security applies security to forward and include dispatcher types. The application uses the AuthorizationFilter either manually or via the authorizeHttpRequests() method. The application configures the FilterChainProxy to apply to forward and/or include requests (e.g. spring.security.filter.dispatcher-types = request, error, async, forward, include). The application may forward or include the request to a higher privilege-secured endpoint.The application configures Spring Security to apply to every dispatcher type via authorizeHttpRequests().shouldFilterAllDispatcherTypes(true)Show less
CVE-2022-36966 1Solarwinds 1Orion Platform May 7, 2025 Oct 20, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous...Show more Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous.Show less
CVE-2022-33077 1Nopcommerce 1Nopcommerce May 9, 2025 Oct 19, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 An access control issue in nopcommerce v4.50.2 allows attackers to arbitrarily modify any customer's address via the addressedit endpoint.
CVE-2022-41479 1Devexpress 1Asp.net Web Forms Controls May 15, 2025 Oct 18, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 The DevExpress Resource Handler (ASPxHttpHandlerModule) in DevExpress ASP.NET Web Forms Build v19.2.3 does not verify the referenced objects in the /DXR.axd?r= HTTP GET parameter. This leads to an Insecure Direct Object...Show more The DevExpress Resource Handler (ASPxHttpHandlerModule) in DevExpress ASP.NET Web Forms Build v19.2.3 does not verify the referenced objects in the /DXR.axd?r= HTTP GET parameter. This leads to an Insecure Direct Object References (IDOR) vulnerability which allows attackers to access the application source code. NOTE: the vendor disputes this because the retrieved source code is only the DevExpress client-side application code that is, of course, intentionally readable by web browsers (a site's custom code and data is never accessible via an IDOR approach).Show less
CVE-2022-3331 1Gitlab 1Gitlab May 14, 2025 Oct 17, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 An issue has been discovered in GitLab EE affecting all versions starting from 14.5 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab's Zentao integration...Show more An issue has been discovered in GitLab EE affecting all versions starting from 14.5 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab's Zentao integration has an insecure direct object reference vulnerability that may be exploited by an attacker to leak Zentao project issues.Show less
CVE-2022-3282 1Codedropz 1Drag And Drop Multiple File Upload Contact Form 7 May 13, 2025 Oct 17, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attacker...Show more The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in the contact form.Show less
CVE-2022-42067 1Oretnom23 1Online Birth Certificate Management System May 14, 2025 Oct 14, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Online Birth Certificate Management System version 1.0 suffers from an Insecure Direct Object Reference (IDOR) vulnerability
CVE-2022-2828 1Octopus 1Octopus Server May 15, 2025 Oct 13, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In affected versions of Octopus Server it is possible to reveal information about teams via the API due to an Insecure Direct Object Reference (IDOR) vulnerability
CVE-2021-36865 1Quizandsurveymaster 1Quiz And Survey Master Feb 20, 2025 Sep 30, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Insecure direct object references (IDOR) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 at WordPress allows attackers to change the content of the quiz.
CVE-2022-1613 110up 1Restricted Site Access May 21, 2025 Sep 26, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 The Restricted Site Access WordPress plugin before 7.3.2 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based limitations in certain situations.

Previous 1...737475...89 Next