# Horizontal Privilege Escalation

- ID: go-horizontal-privilege-escalation
- Severity: HIGH
- CWE: Authorization Bypass Through User-Controlled Key (CWE-639)
- Languages: Go

## Description

Detects horizontal privilege escalation where users can access or modify other users' resources.

## Detection Message

User can access other users' resources without authorization

## Remediation

Validate resource ownership before modification.

```go
if profile.UserID != currentUserID {
    return errors.New("unauthorized")
}
```

Learn more: https://shoulder.dev/learn/go/cwe-639/privilege-escalation

## Documentation

[object Object]

## Related Rules

- **Insecure Direct Object Reference (IDOR)** [HIGH]: 
- **Potential IDOR - Generic Data Access** [MEDIUM]: 
- **Horizontal Privilege Escalation** [CRITICAL]: 
- **Insecure Direct Object Reference (IDOR)** [HIGH]: 
- **Potential IDOR - Generic Data Access** [MEDIUM]: