Back to directory
WRITEUP #3083

How i found “Broken Access Control Through out-of-sync setup” and got $1000

OtherBroken Access ControlBroken authorization
by@Mr_Robert20(Mr Robert | Ahmed M Hassan)
Bounty
1,000
Program
-
Published
Jan 16, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@robert0/how-i-found-broken-access-control-through-out-of-sync-setup-and-got-1000-9143fc5febdd
RELATED WRITEUPS
Leaking All Users Google Drive Files
OtherBroken Access Control
Hacking Moodle Apps Via External Functions
OtherBroken Access Control
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)
RCEForced browsing

Built with ❤️ by Shubham Rawat