Lack of data validation - Out of range
Description
Authenticated user in a domain that restricts certain functionalities such as Employee Management, can bypass the restrictions by using absolute paths to these functionalities.
Impact
Access the employee management panel from an unauthorized domain.
Recommendation
Verify that domains that have restricted certain functionalities cannot access them through absolute paths of these functionalities.
Threat
Authenticated user on the Internet.
Expected Remediation Time
⏱️ 15 minutes.