
Account Takeover Series 3: Account Takeover through Insecure Direct Object Reference
Insecure Direct Object Reference or IDOR occurs when the application trusts the user input and takes sensitive action or shows sensitive information based on the same.