cve/CVE-2025-55886.md at b99156590a6b0c1cf0b374aa41887d37143570c8

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

An Insecure Direct Object Reference (IDOR) vulnerability was discovered in ARD. The flaw exists in the fe_uid parameter of the payment history API endpoint. An authenticated attacker can manipulate this parameter to access the payment history of other users without authorization.

POC

Reference

No PoCs from references.

Github

https://github.com/0xZeroSec/CVE-2025-55886
https://github.com/PuddinCat/GithubRepoSpider
https://github.com/nomi-sec/PoC-in-GitHub

841 B Raw Blame History

CVE-2025-55886

Description

POC

Reference

Github

841 B

Raw Blame History