Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue in System PDV v1.0 allows a remote attacker to obtain sensitive information via the hash parameter in a URL. The application contains an Insecure Direct Object Reference (IDOR) vulnerability, which occurs due to a lack of proper authorization checks when accessing objects referenced by this parameter. This allows direct access to other users' data or internal resources without proper permission. Successful exploitation of this flaw may result in the exposure of sensitive information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PDV-Systeme System PDV 安全漏洞
Vulnerability Description
PDV-Systeme System PDV是德国PDV-Systeme公司的一个订单管理软件。 PDV-Systeme System PDV 1.0版本存在安全漏洞,该漏洞源于hash参数存在不安全的直接对象引用,可能导致敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A