Jean Paul Granados

**Name of the Vulnerable Software and Affected Versions** EMSigner version 2.8.7 **Description** The issue allows attackers to gain unauthorized access to application content and view sensitive data of other users via manipulation of the `documentID` and `EncryptedDocumentId` parameters. This is due to Insecure Direct Object References (IDOR) in the application. **Recommendations** For EMSigner version 2.8.7, consider restricting access to the `documentID` and `EncryptedDocumentId` parameters to minimize the risk of exploitation. As a temporary workaround, avoid using these parameters in sensitive operations until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** EMSigner version 2.8.7 **Description** The issue is related to incorrect access control in the AdHoc User creation form, allowing unauthenticated attackers to modify usernames and privileges using the email address of a registered user. **Recommendations** For EMSigner version 2.8.7, consider restricting access to the AdHoc User creation form until a patch is available. As a temporary workaround, limit the ability to modify usernames and privileges to authenticated and authorized users only.

**Name of the Vulnerable Software and Affected Versions** EMSigner version 2.8.7 **Description** The issue is related to incorrect access control in the Forgot Your Password function, allowing unauthenticated attackers to access accounts of all registered users, including those with administrator privileges, via a crafted password reset token. **Recommendations** For EMSigner version 2.8.7, consider disabling the Forgot Your Password function until a patch is available to prevent exploitation. Restrict access to administrator accounts and monitor for any suspicious activity. At the moment, there is no information about a newer version that contains a fix for this vulnerability.