CVE-2021-35337

Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter.
References
Link Resource
https://www.exploit-db.com/exploits/50050 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:phone_shop_sales_management_system_project:phone_shop_sales_management_system:1.0:*:*:*:*:*:*:*

Information

Published : 2021-07-01 02:15

Updated : 2022-05-03 04:04


NVD link : CVE-2021-35337

Mitre link : CVE-2021-35337

Products Affected
No products.
CWE