PT-2022-19362 · Unknown · Bus Pass Management System
Sudoninja
·
Published
2022-05-11
·
Updated
2023-11-14
·
CVE-2022-29008
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Bus Pass Management System version 1.0
Description
An insecure direct object reference (IDOR) vulnerability in the
viewid parameter allows attackers to access sensitive information.Recommendations
For Bus Pass Management System version 1.0, consider restricting access to the
viewid parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bus Pass Management System