Back to directory
WRITEUP #6133

Abusing internal API to achieve IDOR in New Relic

IDOR
by@jon_bottarini(Jon Bottarini)
Bounty
1,000
Program
New Relic
Published
Jan 2, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.jonbottarini.com/2018/01/02/abusing-internal-api-to-achieve-idor-in-new-relic/
RELATED WRITEUPS
Zomatoooo! IDOR in Saved Payments
IDOR
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
A Creative Way To Get Someones YouTube Videos Deleted + A Copyright Strike Against Their YouTube Channel
IDORBroken Access Control
Bypassing ACLs – IDOR exploitation via HPP
IDORHTTP parameter pollution

Built with ❤️ by Shubham Rawat