Create product discounts of any shop
Medium
T
TikTok
Submitted None
Team Summary
Official summary from TikTok
An Insecure Direct Object Reference (IDOR) vulnerability was found on a TikTok seller endpoint, which could have resulted in any user to create product discounts for shops they did not own. We thank @datph4m for reporting this to our team.
Actions:
Reported by
datph4m
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Insecure Direct Object Reference (IDOR)