PT-2025-32305 · Sage · Sage Dpw
Ferat Aydin
·
Published
2025-08-07
·
Updated
2025-10-01
·
CVE-2025-51533
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Sage DPW versions 2024 12 004 and below
Sage DPW version 2024.12.003
Description
An Insecure Direct Object Reference (IDOR) exists in Sage DPW, allowing unauthorized attackers to access internal forms by sending a crafted GET request.
Recommendations
Update Sage DPW to a version later than 2024 12 004.
Update Sage DPW to a version later than 2024.12.003.
Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sage Dpw