IDOR Vulnerability In GraphQL Api On Website

Image Source: https://threatpost.com/how-to-bug-bounties/165657/
  1. There is a lack of authentication error in Graphql Api while retrieving the file and then sending it to the destination email.
    Why this happened?
    Because in “operation”:”sendEmail” Graphql API only check “[Path]Id” and uncheck “[Path]Hash” .

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store