How these IDOR vulnerability earned 5000$ | Hackerone Reddit Bug Bounty

Modifying any users custom profile links

IDOR, Insecure Direct Object Refference is a broad yet potentially a critical vulnerability. This type of vulnerability occurs when an application does not properly validate user input. An attacker can use this vulnerability to access unauthorized resources or perform unauthorized actions.

In this write-up i’ll be explaining a disclosured report on HackerOne reported by the user criptex The report can be found here

Feature

Reddit users can add …

bounty bug bug bounty bug-bounty-tips hackerone idor infosec reddit vulnerability web app security