Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insecure Direct Object Reference (IDOR) in Codeastro Bus Ticket Booking System v1.0 allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can access another user's profile without proper authentication or authorization checks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CodeAstro Bus Ticket Booking System 安全漏洞
Vulnerability Description
CodeAstro Bus Ticket Booking System是CodeAstro公司的一个巴士票预订系统。 CodeAstro Bus Ticket Booking System 1.0版本存在安全漏洞,该漏洞源于不安全的直接对象引用,可能导致未经授权访问用户资料。
CVSS Information
N/A
Vulnerability Type
N/A