IDOR Vulenebility with empty response still exposing sensitive details of customers!

--

--

--

Cyber Security Researcher | Bug Hunter | Computer Science Student

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Crodo — a project of new opportunities

The New Great Wall

TryHackMe: Subdomain Enumeration Writeup

Subdomain Enumeration Room’s Logo on TryHackMe

🚀 Here are my best finds for a Tech Smart Boss this week — Issue #214

Support for STORM Token Swap to STMX

Eagle’s Eye On Cybercrime Intends — “Be a Real-Life Hawkeye”

Australia announces Contact Tracing (tracking) App

NFT SWINDLES AND HOW TO AVOID THEM

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Rahul Varale

Rahul Varale

Cyber Security Researcher | Bug Hunter | Computer Science Student

More from Medium

Writeup: CSRF where token is not tied to user session @ PortSwigger Academy

Root Detection Bypass Techniques I Use While Mobile Testing <Part 2>

Story of YouTube’s Unfixable Ads Bypass

Utilization of OWASP Tools to protect against XSS vulnerabilities