Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/
API BOLA
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
API BOLA
This page lists
3 vulnerabilities
in this category.
Vulnerability Name
CVE
CWE
Severity
API Sensitive Info(PII) accessible without authentication
-
CWE-284
High
Horizontal IDOR/BOLA (Broken Object Level Authorization)
-
CWE-639
High
Vertical IDOR/BOLA (Broken Object Level Authorization)
-
CWE-639
High
