Description

An issue in System PDV v1.0 allows a remote attacker to obtain sensitive information via the hash parameter in a URL. The application contains an Insecure Direct Object Reference (IDOR) vulnerability, which occurs due to a lack of proper authorization checks when accessing objects referenced by this parameter. This allows direct access to other users' data or internal resources without proper permission. Successful exploitation of this flaw may result in the exposure of sensitive information.

INFO

Published Date :

2025-08-25T00:00:00.000Z

Last Modified :

2025-08-25T14:02:40.289Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-45968 vulnerability.

Vendors Products
System Pdv Project
  • System Pdv
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-45968.

URL Resource
https://medium.com/@r3dd1t/pedindo-um-lanche-e-possivelemnte-descobrindo-uma-cve-9930b0114e3f cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact