13 Access Control Vulnerability
01 Lab: Unprotected admin functionality03 Lab: User role controlled by request parameter04 Lab User role can be modified in user profile 17efab5460ec808c8da6e67d210bf5a205 Lab: User ID controlled by request parameter07 Lab: User ID controlled by request parameter with data leakage in redirect09 Lab: Insecure direct object references
Last updated