There was an IDOR vulnerability that affected the BillingInvoice ID in both the BillingDocumentDownload and BillDetails GraphQL operations.
Shopify | Report #2207248 – IDOR on GraphQL queries BillingDocumentDownload and BillDetails
There was an IDOR vulnerability that affected the BillingInvoice ID in both the BillingDocumentDownload and BillDetails GraphQL operations.