CVE-2024-50650

Name of the Vulnerable Software and Affected Versions: python book version V1.0

Description: The issue concerns an Incorrect Access Control vulnerability, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter. This vulnerability exposes sensitive data.

Recommendations: For python book version V1.0, as a temporary workaround, consider restricting access to the ID parameter to minimize the risk of exploitation. Avoid using the ID parameter in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.