all InfoSec news
Exploiting an IDOR that deletes Victim’s job alert
InfoSec Write-ups - Medium infosecwriteups.com
In the ever-evolving landscape of cybersecurity, hidden vulnerabilities lie beneath the surface, waiting to be discovered. Recently, I stumbled upon an Insecure Direct Object Reference (IDOR) vulnerability — an unsuspecting gateway that allowed me to delete the victims job alerts.
Talking about the target, it was a private VDP program from the Hacker one platform. The program had only “app.target.com” and “api.target.com” in scope. So it was quite easy for me to directly dive into the features and functionalities. The …
alert alerts cybersecurity delete exploiting gateway hacker hidden idor insecure insecure direct object reference job object private program reference talking target vdp victim vulnerabilities vulnerability