bars
kyou
search
circle-xmark
⌘
Ctrl
k
copy
Copy
chevron-down
TCM
chevron-right
Practical Web Hacking
Access Control
Lab: User ID controlled by request parameter
chevron-right
Lab: Unprotected admin functionality
chevron-right
Lab: Insecure direct object references
chevron-right
Lab: Multi-step process with no access control on one step
chevron-right
Lab: Referer-based access control
chevron-right
Previous
Lab: 2FA simple bypass
chevron-left
Next
Lab: User ID controlled by request parameter
chevron-right