VYPR

Customer Portal

by NightWolf

CVEs (2)

  • CVE-2025-3013HigMar 31, 2025
    risk 0.54cvss epss 0.00

    Insecure Direct Object References (IDOR) in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references.

  • CVE-2023-45893Jan 2, 2024
    risk 0.00cvss epss 0.01

    An indirect Object Reference (IDOR) in the Order and Invoice pages in Floorsight Customer Portal Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information.