Tag: idor
All the articles with the tag "idor".
-
Insecure Direct Object Reference: Unauthorized Order Access
How changing one number in the URL lets you read anyone's order on OopsSec Store.
All the articles with the tag "idor".
How changing one number in the URL lets you read anyone's order on OopsSec Store.
