daffainfo
/
AllAboutBugBounty
mirror of https://github.com/daffainfo/AllAboutBugBounty.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update Insecure Direct Object References.md

pull/3/head
Muhammad Daffa 2021-06-25 06:13:39 +07:00 committed by GitHub
parent db67aa4646
commit 4ef0eb014e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 38 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

38
Insecure Direct Object References.md
View File

@ -114,5 +114,43 @@ Try this to bypass
GET /file?id=302
```
12. Change HTTP Method
```
GET /api/v1/users/profile/111
```
Try this to bypass
```
POST /api/v1/users/profile/111
```
13. Path traversal
```
GET /api/v1/users/profile/victim_id
```
Try this to bypass
```
GET /api/v1/users/profile/my_id/../victim_id
```
14. Change request content type
```
Content-type: application/xml
```
Try this to bypass
```
Content-type: application/json
```
15. Send wildcard instead of ID
```
GET /api/users/111
```
Try this to bypass
```
GET /api/users/*
```
16. Try google dorking to find new endpoint
Reference:
- [@swaysThinking](https://twitter.com/swaysThinking) and other medium writeup