Employee-only Area Bypass
Medium
L
LinkedIn
Submitted None
Team Summary
Official summary from LinkedIn
The researcher was able to identify an Improper Access Control issue in the My Company section, which allows an attacker to successfully access the employee-reserved page without being employed by the company itself, leading to information disclosure.
Actions:
Reported by
mv0x01
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Improper Access Control - Generic