LongBox Limited Access Manager suffers from an insecure direct object reference vulnerability. This issue affects Access Manager versions 1.2 through 1.4-RG3. It has been addressed in versions greater than or equal to 1.4-RG4.
5d4160f17880fe8ed8dc9c4f0a63266be032c672ef9780e2d0e3eb0f05bea932