23.4 Lab: User ID controlled by request parameter with data leakage in redirect | 2023
This lab contains an access control vulnerability where sensitive information is leaked in the body of a redirect response. To solve the lab, obtain the API key for the user carlos and submit it as the solution | Karthikeyan Nagaraj
1 min readNov 17, 2023
Description
This lab contains an access control vulnerability where sensitive information is leaked in the body of a redirect response.
To solve the lab, obtain the API key for the user carlos
and submit it as the solution.
You can log in to your own account using the following credentials: wiener:peter
Solution
- Log In to wiener Account
- Turn on Foxy Proxy and turn on the Intercept
- In the URL change the Username from
wiener
tocarlos
- Capture that Request and send it to Repeater
- Now, send the Request, and in the Response, you can see that the API key carlos is disclosed
If you would like to support me so that I can create more free content — https://www.buymeacoffee.com/cyberw1ng
Thank you for Reading!
Happy Hacking ~
Author: Karthikeyan Nagaraj ~ Cyberw1ng
Telegram Channel for Ethical Hacking Dumps — https://t.me/ethicalhackingessentials