This lab controls access to certain admin functionality based on the Referer header. You can familiarize yourself with the admin panel by logging in using the credentials
administrator:admin
.To solve the lab, log in using the credentials
Lab link.wiener:peter
and exploit the flawed access controls to promote yourself to become an administrator.
We log in to the admin panel, promote the user Carlos, and review the requests.
We send the request to the reporter. We look for an access control vulnerability as the referer URL in the request. We exit the admin user and enter the wiener user. By changing the user name and cookie values in the request, we bypass the access control and solve the lab.
Hello, I am Aleyna Doğan. I work as a Sr. Cyber Threat Intelligence Analyst. In my blog, we write blog posts that my friends and I want to share. Have a good read.