CVE-2024-50651 Information

Description

java_shop 1.0 is vulnerable to Incorrect Access Control which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.

Reference

https://github.com/Yllxx03/CVE/blob/main/java_shop/BrokenAccessControl.md https://github.com/Yllxx03/CVE/tree/main/CVE-2024-50651