Back to directory
WRITEUP #3539

~/BugBounty/IDOR/”How I was able to exfiltrate any user’s credit coupons”

IDOR
by@ja1sharma(Jai Sharma)
Program
-
Published
Aug 2, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://ja1sharma.medium.com/bugbounty-idor-how-i-was-able-to-exfiltrate-any-users-credit-coupons-49631d9f3bc8
RELATED WRITEUPS
Zomatoooo! IDOR in Saved Payments
IDOR
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
A Creative Way To Get Someones YouTube Videos Deleted + A Copyright Strike Against Their YouTube Channel
IDORBroken Access Control
Bypassing ACLs – IDOR exploitation via HPP
IDORHTTP parameter pollution

Built with ❤️ by Shubham Rawat