kyou
Ctrl
k
Copy
TCM
Practical Web Hacking
Access Control
Lab: User ID controlled by request parameter
Lab: Unprotected admin functionality
Lab: Insecure direct object references
Lab: Multi-step process with no access control on one step
Lab: Referer-based access control
Previous
Lab: 2FA simple bypass
Next
Lab: User ID controlled by request parameter