HomeEntitiessecurity_weakness › Insecure direct object reference

Insecure direct object reference

type of access control vulnerability in digital security
Thing security_weakness Q104792366
Press Enter · cited answer in seconds

Insecure direct object reference

Summary

Insecure direct object reference is a security weakness[1].

Key Facts

  • Insecure direct object reference's instance of is recorded as security weakness[2].
  • Insecure direct object reference's instance of is recorded as CWE weakness[3].
  • Insecure direct object reference is a type of vulnerability[4].
  • Insecure direct object reference is part of OWASP Top 10[5].
  • Insecure direct object reference's described at URL is recorded as https://www.invicti.com/learn/insecure-direct-object-references-idor/[6].
  • Insecure direct object reference's described at URL is recorded as https://www.imperva.com/learn/application-security/insecure-direct-object-reference-idor/[7].
  • Insecure direct object reference's described at URL is recorded as https://portswigger.net/web-security/access-control/idor[8].

Body

Definition and Type

Recorded instance of include security weakness[2] and CWE weakness[3]. Insecure direct object reference is a type of vulnerability[4].

Use and Application

Insecure direct object reference is part of OWASP Top 10[5].

References

Programmatic citations — every numbered marker resolves to a verifiable graph row below.

Direct Wikidata claims

  1. [2] . cwe.mitre.org. cwe.mitre.org. Provenance: wikidata.org.
  2. [3] . wikidata.org.
  3. [4] . wikidata.org.
  4. [5] . devguide.owasp.org. devguide.owasp.org. Provenance: wikidata.org.
  5. [6] . wikidata.org.
  6. [7] . wikidata.org.
  7. [8] . wikidata.org.

Class ancestry

  1. [1] . Wikidata. wikidata.org.

📑 Cite this page

Use these citations when quoting this entity in research, articles, AI prompts, or wherever provenance matters. We aggregate Wikidata + Wikipedia + authoritative open-data sources; the stitched, scored, cross-referenced view is what 4ort.xyz contributes.

APA 4ort.xyz Knowledge Graph. (2026). Insecure direct object reference. Retrieved May 7, 2026, from https://4ort.xyz/entity/insecure-direct-object-reference
MLA “Insecure direct object reference.” 4ort.xyz Knowledge Graph, 4ort.xyz, 7 May. 2026, https://4ort.xyz/entity/insecure-direct-object-reference.
BibTeX @misc{4ortxyz_insecure-direct-object-reference_2026, author = {{4ort.xyz Knowledge Graph}}, title = {{Insecure direct object reference}}, year = {2026}, url = {https://4ort.xyz/entity/insecure-direct-object-reference}, note = {Accessed: 2026-05-07}}
LLM prompt According to 4ort.xyz Knowledge Graph (aggregator of Wikidata, Wikipedia, and authoritative open-data sources): Insecure direct object reference — https://4ort.xyz/entity/insecure-direct-object-reference (retrieved 2026-05-07)

Canonical URL: https://4ort.xyz/entity/insecure-direct-object-reference · Last refreshed: