CVE-2023-36238 Information

Description

Insecure Direct Object Reference (IDOR) in Bagisto v.1.5.1 allows an attacker to obtain sensitive information via the invoice ID parameter.

Reference

https://github.com/Ek-Saini/security/blob/main/IDOR-Bagisto