Nixon-H/Ecommerce-IDOR-Product-Manipulation

Nixon-H/Ecommerce-IDOR-Product-Manipulation

GitHubGitHub
GitHubgithub.com
Releases0
A High-severity (8.1) IDOR flaw in product management. The backend fails to verify record ownership during SQL updates/deletes. Any authenticated seller can modify or delete products belonging to others by manipulating the id parameter, enabling financial fraud and catalog deletion.
Log in to subscribe

Collections containing this project

Showing collections based on your access.

This project is not in any collections you can view.