Back to directory

WRITEUP #3606

Broken Access control bug : Bypassing 403’s by finding another endpoint that do the same thing.

OtherBroken Access Control403 bypass

by@tomorrowisnew_(tomorrowisnew)

Program

-

Published

Jul 12, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://tomorrowisnew.com/posts/broken-access-control-bug-bypassing-403-s-by-finding-another-endpoint-that-do-the-same-thing/

▸ RELATED WRITEUPS

Leaking All Users Google Drive Files

OtherBroken Access Control

Hacking Moodle Apps Via External Functions

OtherBroken Access Control

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Built with ❤️ by Shubham Rawat