Tracking IDOR Vulnerability in Access Control in Versions Prior to 2.1.4

Vulnerability

A vulnerability allowing Insecure Direct Object References (IDOR) has been identified in the access control mechanism of Tracking version 2.1.4. This vulnerability allows an attacker to manipulate request parameters or object references to gain unauthorized access to resources.

Impact

Exploitation of this vulnerability could lead to unauthorized access to objects or resources, bypassing normal access controls.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tracking IDOR Vulnerability in Access Control in Versions Prior to 2.1.4

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating