Skip to content

Insecure direct object references (IDOR)

What is IDOR?

Insecure Direct Object References(IDOR) occur when an application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization and access resources in the system directly, for example, database records or files.

IDOR Handbook

Burp Extensions