Actions

Support #3094

open

Potential IDOR – Unauthorized Modification of Internal Business Pairing Data

Added by Sall Sokkheng 22 days ago. Updated 15 days ago.

Status:
Completed
Priority:
Normal
Assignee:
Start date:
06/25/2026
Due date:
06/26/2026 (18 days late)
% Done:

100%

Estimated time:
Tester:
Testing Percentages:
0%

Description

An unauthorized user could access the pairing edit endpoint, indicating a potential IDOR/authorization weakness, even though the update was not successfully applied.


Related issues 2 (2 open0 closed)

Copied from Support #3093: Improper Input Validation Allows Modification of Restricted User ParametersTestingSall Sokkheng06/24/202606/25/2026

Actions
Copied to Support #3108: Unauthenticated Self-Registration EndpointCompletedVeng Liza06/23/202606/23/2026

Actions
Actions #1

Updated by Sall Sokkheng 22 days ago

  • Copied from Support #3093: Improper Input Validation Allows Modification of Restricted User Parameters added
Actions #2

Updated by Veng Liza 21 days ago

  • Copied to Support #3108: Unauthenticated Self-Registration Endpoint added
Actions #3

Updated by Sall Sokkheng 15 days ago

  • Status changed from New to Completed
  • % Done changed from 0 to 100
Actions

Also available in: Atom PDF