($$$) IDOR via GET Request which can SOLD all User Products

  1. product_Id

--

--

--

Pemburu Bug & Pengujian Penetrasi

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

DC-3 : Vulnhub Walkthrough

DeFiChain Adds 4 New Decentralized Assets For Price Exposure To Disney, Intel, MicroStrategy, And…

FilSwan Announces Launch of FS3 V2.0.0- FS3 is taking you to the Filecoin Network

OrbitInu aims to be the first inu token with massive utilities.

ATOM Might Trade Below Its Immediate Support Level Despite A Recent Rally

Russia: BTC Will Lead To Prison

Force Open Day! Open for Web3 Ecosystem Partners

Diamonds Alaska Malamute Compensate

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aidil Arief

Aidil Arief

Pemburu Bug & Pengujian Penetrasi

More from Medium

OTP bypass via response manipulation

Bypassed Rate Limit -2

Business Logic Bug| Email Existing Bypass | Running 2 accounts with a single email

How I found SSRF external interaction on Bugcrowd Public program in 5 min