CVE-2024-55058 | THREATINT

Description

An insecure direct object reference (IDOR) vulnerability was discovered in PHPGurukul Online Birth Certificate System v1.0. This vulnerability resides in the viewid parameter of /user/view-application-detail.php. Authenticated users can exploit this flaw by manipulating the viewid parameter in the URL to access sensitive birth certificate details of other users without proper authorization checks.

PUBLISHED Reserved 2024-12-06 | Published 2024-12-17 | Updated 2024-12-18 | Assigner mitre

References

github.com/SCR-athif/CVE/tree/main/CVE-2024-55058

cve.org (CVE-2024-55058)

nvd.nist.gov (CVE-2024-55058)

Download JSON