- IDOR:
- Insecure Direct Object Reference
Insecure Direct Object Reference, also known as IDOR, is a reference to an internal implementation object that is exposed to a user without proper access control.
IDOR can lead to attackers bypassing authentication and accessing resources, accounts, and modifying some data.
IDOR is often leveraged for horizontal movement, but vertical movement is also possible.
https://www.nuharborsecurity.com/web-application-security-insecure-direct-object-reference-idor