13 Access Control Vulnerability

01 Lab: Unprotected admin functionality 03 Lab: User role controlled by request parameter 04 Lab User role can be modified in user profile 17efab5460ec808c8da6e67d210bf5a2 05 Lab: User ID controlled by request parameter 07 Lab: User ID controlled by request parameter with data leakage in redirect 09 Lab: Insecure direct object references

Previous01 Lab: File path traversal, simple case Next01 Lab: Unprotected admin functionality

Last updated 1 year ago