yueslly/MKAUTH-IDOR

Releases0

An idor was found at a brazilian ISP system.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-30059 ↗	May 12, 2026Tuesday, 12 May 2026, 16:16	5.4 MEDIUM	—
An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request.