This issue was responsibly disclosed to the vendor, acknowledged, and subsequently remediated
A set of access control vulnerabilities was identified in the WestFAX porting portal allowing unauthorized access to sensitive customer porting data and uploaded documents. The issues include:
- Insecure Direct Object Reference (IDOR) in port request viewing
- IDOR in port request modification endpoint