CVE-2021-35337 : Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference IDOR . Any attacker will be able to see the invoices of different users by changing the id parameter.... https://t.co/y3882ITGax