CVE-2024-55471
on github
Published
Severity
CVSS v3:
N/A
CVSS v2:
N/A
Description
Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to access sensitive information of other users by manipulating the id parameter.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|