CWE:
 

Tytuł
Data
Autor
Low
Listeo WordPress Theme <= 1.6.10 - Multiple Authenticated IDOR Vulnerabilities
17.05.2021
m0ze
Med.
HomeSweet - Real Estate WordPress Theme v1.4 - IDOR leading to arbitrary deletion of ads
13.07.2020
Vlad Vector
Med.
CarSpot – Dealership Wordpress Classified Theme v2.2.0 Multiple Vulnerabilities
17.01.2020
m0ze
Med.
Fortify Software Security Center (SSC) 17.10/17.20/18.10 Information Disclosure (2)
24.12.2018
alt3kx


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2022-05-16
Waiting for details
CVE-2022-1425

Updating...
 

 
The WPQA Builder Plugin WordPress plugin before 5.2, used as a companion plugin for the Discy and Himer , does not validate that the message_id of the wpqa_message_view ajax action belongs to the requesting user, leading to any user being able to read messages for any other users via a Insecure Direct Object Reference (IDOR) vulnerability.

 
2022-05-01
Medium
CVE-2022-23061

Vendor: Shopizer
Software: Shopizer
 

 
In Shopizer versions 2.0 to 2.17.0 a regular admin can permanently delete a superadmin (although this cannot happen according to the documentation) via Insecure Direct Object Reference (IDOR) vulnerability.

 
2022-04-07
Medium
CVE-2021-46416

Updating...
 

 
Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.

 
2022-04-06
Low
CVE-2022-27108

Vendor: Orangehrm
Software: Orangehrm
 

 
OrangeHRM 4.10 is vulnerable to Insecure Direct Object Reference (IDOR) via the end point symfony/web/index.php/time/createTimesheet`. Any user can create a timesheet in another user's account.

 
2022-04-04
Medium
CVE-2022-1165

Vendor: Plugin-planet
Software: Blackhole fo...
 

 
The Blackhole for Bad Bots WordPress plugin before 3.3.2 uses headers such as CF-CONNECTING-IP, CLIENT-IP etc to determine the IP address of requests hitting the blackhole URL, which allows them to be spoofed. This could result in blocking arbitrary IP addresses, such as legitimate/good search engine crawlers / bots. This could also be abused by competitors to cause damage related to visibility in search engines, can be used to bypass arbitrary blocks caused by this plugin, block any visitor or even the administrator and even more.

 
2022-03-16
Medium
CVE-2021-43957

Vendor: Atlassian
Software: Crucible
 

 
Affected versions of Atlassian Fisheye & Crucible allowed remote attackers to browse local files via an Insecure Direct Object References (IDOR) vulnerability in the WEB-INF directory and bypass the fix for CVE-2020-29446 due to a lack of url decoding. The affected versions are before version 4.8.9.

 
2022-03-03
Medium
CVE-2022-25471

Vendor: Open-emr
Software: Openemr
 

 
An Insecure Direct Object Reference (IDOR) vulnerability in OpenEMR 6.0.0 allows any authenticated attacker to access and modify unauthorized areas via a crafted POST request to /modules/zend_modules/public/Installer/register.

 
2022-02-28
Waiting for details
CVE-2021-41111

Updating...
 

 
Rundeck is an open source automation service with a web console, command line tools and a WebAPI. Prior to versions 3.4.5 and 3.3.15, an authenticated user with authorization to read webhooks in one project can craft a request to reveal Webhook definitions and tokens in another project. The user could use the revealed webhook tokens to trigger webhooks. Severity depends on trust level of authenticated users and whether any webhooks exist that trigger sensitive actions. There are patches for this vulnerability in versions 3.4.5 and 3.3.15. There are currently no known workarounds.

 
2022-02-21
Medium
CVE-2022-0691

Vendor: Url-parse project
Software: Url-parse
 

 
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.9.

 
2022-02-20
Waiting for details
CVE-2022-0686

Updating...
 

 
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.8.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top