Actions
Support #3094
openPotential IDOR – Unauthorized Modification of Internal Business Pairing Data
Start date:
06/25/2026
Due date:
06/26/2026 (18 days late)
% Done:
100%
Estimated time:
Tester:
Testing Percentages:
0%
Description
An unauthorized user could access the pairing edit endpoint, indicating a potential IDOR/authorization weakness, even though the update was not successfully applied.
Updated by Sall Sokkheng 22 days ago
- Copied from Support #3093: Improper Input Validation Allows Modification of Restricted User Parameters added
Updated by Veng Liza 21 days ago
- Copied to Support #3108: Unauthenticated Self-Registration Endpoint added
Updated by Sall Sokkheng 15 days ago
- Status changed from New to Completed
- % Done changed from 0 to 100
Actions