PT-2025-34610 · Unknown · System Pdv Version 1.0
R3Dd1T
·
Published
2025-08-25
·
Updated
2025-08-29
·
CVE-2025-45968
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
System PDV version 1.0
Description:
The application contains an Insecure Direct Object Reference (IDOR) vulnerability due to a lack of proper authorization checks when accessing objects referenced by the
hash parameter in a URL. This allows direct access to other users' data or internal resources without proper permission. Successful exploitation of this flaw may result in the exposure of sensitive information.Recommendations:
Ensure proper authorization checks are implemented when accessing objects referenced by the
hash parameter.Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
System Pdv Version 1.0