api 7

• Information Disclosure – Debug Branch Receipt Exposure | Quikpay Receipts May 29, 2026
• Mass Assignment – Role Escalation | Salt Brook Pilates May 27, 2026
• IDOR – Account Export Data Disclosure | Remittance May 26, 2026
• GraphQL Information Disclosure – System Configuration Exposure | Schematic May 26, 2026
• UUID-Based IDOR Through Member API | Apex May 9, 2026
• Broken Authentication – Predictable Timestamp Token Leads to Admin Account Takeover | Sokudo May 1, 2026
• Broken Access Control – Unauthorized Stats Modification via HTTP Method Manipulation | BugForge Apr 23, 2026