Summary by INUMA_CYBERSECURITY
An Insecure Direct Object Reference (IDOR) vulnerability was found in the NASA system within the PROSAMS (Proposal Submissions and Awards Management System) application where I was able to access sensitive data for over 3,200 users, including personal details and admin details. I could retrieve information about other firms, including usernames, emails, phone numbers, and physical addresses, as well as business-related details like FirmName and EIN(Employer Identification Number).