Back to directory
WRITEUP #6608

IDOR Leads to Unauthorized Deletion: How I Earned $500 in Bug Bounty

Bug BountyIDORBroken Access Control
byMedusa
Bounty
$500
Program
Self-managed
Published
Jun 22, 2025
Added to HackDex
Mar 21, 2026
Read Full Writeuphttps://medusa0xf.medium.com/idor-leads-to-unauthorized-deletion-how-i-earned-500-in-bug-bounty-335bd6a2c75d
RELATED WRITEUPS
A Creative Way To Get Someones YouTube Videos Deleted + A Copyright Strike Against Their YouTube Channel
IDORBroken Access Control
Zomatoooo! IDOR in Saved Payments
IDOR
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
Vestaboard: Exploring Broken Access Controls and Privilege Escalation
Privilege EscalationBroken Access Control

Built with ❤️ by Shubham Rawat