The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating the ID included in the request
buddyboss buddyboss platform