Apprentice
Unprotected admin functionalityUnprotected admin functionality with unpredictable URLUser role controlled by request parameterUser role can be modified in user profileUser ID controlled by request parameterUser ID controlled by request parameter, with unpredictable user IDsUser ID controlled by request parameter with data leakage in redirectUser ID controlled by request parameter with password disclosureInsecure Direct Object References (IDOR)
Last updated