Back to directory
WRITEUP #2110

Insecure Comments

IDORBroken authorization
byMeareg
Program
Microsoft
Published
Oct 7, 2022
Added to HackDex
Oct 8, 2022
Read Full Writeuphttps://mearegtu.medium.com/insecure-comments-73399193f804
RELATED WRITEUPS
CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)
RCEForced browsing
Zomatoooo! IDOR in Saved Payments
IDOR
How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System
ReconMissing authentication
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL

Built with ❤️ by Shubham Rawat