7.3 Lab: User role controlled by request parameter | 2023

This Lab has an admin panel at /admin, which is using a forgeable cookie. Solve the lab by accessing the admin panel and using it to delete the user carlos | Karthikeyan Nagaraj

Karthikeyan Nagaraj
2 min readSep 18

--

Description

This lab has an admin panel at /admin, which identifies administrators using a forgeable cookie.

Solve the lab by accessing the admin panel and using it to delete the user carlos.

You can log in to your own account using the following credentials: wiener:peter

Solution 1

  1. Log In with the credentials wiener:peter
  2. Change the Value of Admin Cookie to True and Refresh the page
  3. Now you can access admin panel and you can delete the user Carlos to solve the lab

Solution 2

  1. Log In with the credentials wiener:peter
  2. Now, Enable the proxy
  3. In the Request Right Click > Do Intercept > Response to this request
  4. Now on the response you can able to see the admin cookie’s value set to false
  5. Change it to true then send the request
  6. Switch of the proxy if needed
  7. Now you can access the admin panel and you can delete the user Carlos to solve the lab

Cyberw1ng

Learn Cyber Security and Create Awareness ~ cyberwing Stay tuned with me, Subscribe and Like the Videos... Ask Doubts…

www.youtube.com

If you would like to support me so that I could create more free content — https://www.buymeacoffee.com/cyberw1ng

Thank you for Reading!

Happy Hacking ~

Author: Karthikeyan Nagaraj ~ Cyberw1ng

Telegram Channel for Ethical Hacking Dumps — https://t.me/ethicalhackingessentials

Cybersecurity
Security
Hacking
Penetration Testing
Bug Bounty

--

--

Karthikeyan Nagaraj

Written by Karthikeyan Nagaraj

1.3K Followers

Security Researcher | Bug Hunter | Web Pentester | CTF Player | TryHackme Top 1% | AI Researcher | Blockchain Developer

Help

Status

About

Careers

Blog

Privacy

Terms

Text to speech

Teams