Horizontal Privilege Escalation

In horizontal escalation an attacker remains at the same trust tier but breaks tenant or per-user isolation: account A reads, modifies or impersonates account B. The most common cause is Broken Access Control — APIs that trust client-supplied identifiers (user IDs, account numbers, document GUIDs) without checking ownership server-side. Insecure Direct Object References, predictable identifiers, missing tenant scoping, and session-fixation bugs are typical roots. Impact ranges from data exposure to financial fraud and is especially damaging in multi-tenant SaaS. Mitigations include enforcing authorization on every object reference, scoping queries by current user/tenant, using unguessable identifiers, and adding automated tests for cross-account access.