VYPR

NuGet package

oqtane.shared

pkg:nuget/oqtane.shared

Vulnerabilities (1)

  • CVE-2024-55186MedDec 20, 2024
    affected <= 6.0.0

    An IDOR (Insecure Direct Object Reference) vulnerability exists in oqtane Framework 6.0.0, allowing a logged-in user to access inbox messages of other users by manipulating the notification ID in the request URL. By changing the notification ID, an attacker can view sensitive mai