2023-03-24 00:00:00
mitre
PUBLISHED
Faveo 5.0.1 allows remote attackers to obtain sensitive information via a modified user ID in an Insecure Direct Object Reference (IDOR) attack.