Back to directory
WRITEUP #840

How I was able to modify and delete any user’s data file (filestack API)

APIHardcoded API keys
by@yashparwekar(Spideynati)
Program
-
Published
Aug 31, 2023
Added to HackDex
Sep 5, 2023
Read Full Writeuphttps://spideynati.medium.com/how-i-was-able-to-modify-and-delete-any-users-data-file-filestack-api-7377bc52856f
RELATED WRITEUPS
Authorization bypass due to cache misconfiguration
APIAuthorization bypass
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL

Built with ❤️ by Shubham Rawat