Summary by gchomp
IDOR and authentication bypass, allowing attackers to view sensitive information and reset PINs and passwords.
Broken Access Control Leads to Account Takeover
Disclosed by gchomp- Engagement Federal Communications Commission: Vulnerability Disclosure Program
- Disclosed date over 2 years ago
- Priority P1 Bugcrowd's VRT priority rating
- Status Resolved This vulnerability has been accepted and fixed