Upload profile photo and Pets addition - IDOR

An Insecure Direct Object Reference (IDOR) vulnerability is discovered on the website ██████████. Through this vulnerability, it is possible for an attacker to manipulate any user account by uploading profile photos and adding pets to victim accounts. The vulnerability exists in two main functionalities: the profile photo upload feature and the pet addition system. By manipulating specific parameters in the requests, unauthorized modifications to other users' accounts can be performed without proper authorization checks