secuvera-SA-2020-01: Broken Object Level Authorization Vulnerability in OvulaRing-Webapplication

Posted by Tobias Glemser on Nov 06

secuvera-SA-2020-01: Broken Object Level Authorization Vulnerability in OvulaRing-Webapplication

Affected Products
OvulaRing Webapp Version 4.2.2 (older releases have not been tested)

References
https://www.secuvera.de/advisories/secuvera-SA-2020-01.txt
https://owasp.org/www-project-api-security/ API1:2019 Broken Object Level Authorization

Summary:
“OvulaRing is an easy and accurate way to find out about your cycle health and…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source