Back to directory
WRITEUP #3408

Exposing Millions of IRCTC Passengers' ticket details.

IDOR
by@IamRenganathan(Renganathan)
Program
IRCTC
Published
Sep 12, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://infosecwriteups.com/exposing-millions-of-irctc-passengers-ticket-details-53338280fb9e
RELATED WRITEUPS
Zomatoooo! IDOR in Saved Payments
IDOR
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
A Creative Way To Get Someones YouTube Videos Deleted + A Copyright Strike Against Their YouTube Channel
IDORBroken Access Control
Bypassing ACLs – IDOR exploitation via HPP
IDORHTTP parameter pollution

Built with ❤️ by Shubham Rawat