High severity7.5NVD Advisory· Published Dec 30, 2020· Updated Jun 17, 2026
CVE-2020-35737
CVE-2020-35737
Description
In Correspondence Management System (corms) in Newgen eGov 12.0, an attacker can modify other users' profile information by manipulating the unvalidated UserIndex parameter, aka Insecure Direct Object Reference.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Newgen/eGovdescription
- Range: = 12.0
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/160826/Newgen-Correspondence-Management-System-eGov-12.0-Insecure-Direct-Object-Reference.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/49378nvdExploitThird Party AdvisoryVDB Entry
- gist.github.com/AliAlsinan/0323e57d2345ef0b4e73c803dba93486nvdThird Party Advisory
News mentions
0No linked articles in our index yet.