all InfoSec news
500$ Access Control Bug: Performed Restricted Actions in Developer Settings by low level user.
Feb. 25, 2024, 6:52 a.m. | Abhi Sharma
InfoSec Write-ups - Medium infosecwriteups.com
Recently,i found an interesting bug during my testing that enables a supporter to carry out restricted actions within the developer settings, specifically tweaking notifications without proper authorization in an Private Program. This issue sheds light on a loophole where a low-level actor or a restricted supporter can attempt to manipulate the application’s logic.
Understanding TargetExamNote(Virtual Name of BBP) is a comprehensive platform designed to prioritize customer needs by offering an all-in-one solution for modern card issuer processing and program …
access control bug bounty cybersecurity pentesting programming
More from infosecwriteups.com / InfoSec Write-ups - Medium
Devvortex Hackthebox Walkthrough
1 week, 1 day ago |
infosecwriteups.com
Port Scanning for Bug Bounties
1 week, 1 day ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
XDR Detection Engineer
@ SentinelOne | Italy
Security Engineer L2
@ NTT DATA | A Coruña, Spain
Cyber Security Assurance Manager
@ Babcock | Portsmouth, GB, PO6 3EN
Senior Threat Intelligence Researcher
@ CloudSEK | Bengaluru, Karnataka, India
Cybersecurity Analyst 1
@ Spry Methods | Washington, DC (Hybrid)
Security Infrastructure DevOps Engineering Manager
@ Apple | Austin, Texas, United States