Back to directory
WRITEUP #2294

The Million Dollar IDOR

IDORRace conditionGraphQL
byMonish Basaniwal
Program
-
Published
Aug 27, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://monish-basaniwal.medium.com/the-million-dollar-hack-8163892bfe2f
RELATED WRITEUPS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
Zomatoooo! IDOR in Saved Payments
IDOR
Authorization bypass due to cache misconfiguration
APIAuthorization bypass
ArtiPACKED: Hacking Giants Through a Race Condition in GitHub Actions Artifacts
Race ConditionCI/CD
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS

Built with ❤️ by Shubham Rawat