top of page
Search

IDOR with a twist

Writer's picture: Hackt3rHackt3r
Apr 13, 20232 min read

Hello everyone, it’s been a long time. Hope everyone’s doing good


Today I want to share with you how I found IDOR in an application, which at first thought was not vulnerable to. Finding vulnerabilities is something that requires a different approach even for the same vulnerability for different applications. So let us get started.


If you want to find out more about IDOR check out my previous article here where you will get all the details you need.


Application:

This is a kind of application that I have never worked before, so it took me some time to understand and see how the flow works. I can’t disclose the application, so let us call it https://redacted.com


Now I was just going through the application and there are so many parameters in just one URL. I thought why wouldn’t I check for sqli and xss as they are my first go to vulnerabilities. But no luck the application started filtering out the characters. So my next step was to check for IDOR.


So the base URL looked something like this


Like everyone I just used burp’s intruder and checked for all the numbers from 1 to 1000. All the responses were 200 but no information was coming out in the response. The response looked something like this 

HTTP/2 200 OK
Date: Thu, 13 Apr 2023 10:52:16 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1415
Server: nginx

{"data":[],"message":"No Data.","success":true}

So, I thought may be it is not working, but as I started understanding the application I got better idea of it. The application is actually an isolated one with just one user😅 . So when I got a clear picture of the application, I just went and created one more user and tried changing the parameter and this time it worked.


I could see the information of the other user. And not just this one URL or parameter but all the parameters are vulnerable to the same approach.



This is my story of finding an IDOR. That’s all from my side today and catch you up again in the next post with another vulnerability. Check out my Instagram to get more updates and tricks.


Till then take care and Happy Hacking!!!👋👋

1 view0 comments

Recent Posts

See All

Comments

©2023 by M Sathvika Sai

bottom of page