Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the ultimate-blocks domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/margheri/public_html/wp-includes/functions.php on line 6121

Notice: _load_textdomain_just_in_time işlevi yanlış çağrıldı. Translation loading for the perfect-portfolio domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Ayrıntılı bilgi almak için lütfen WordPress hata ayıklama bölümüne bakın. (Bu ileti 6.7.0 sürümünde eklendi.) in /home/margheri/public_html/wp-includes/functions.php on line 6121
Portswigger: Referer-based access control Writeup - Aleyna Doğan

Portswigger: Referer-based access control Writeup

updated on 11 Temmuz 202411 Temmuz 2024By Aleyna Doğan

This lab controls access to certain admin functionality based on the Referer header. You can familiarize yourself with the admin panel by logging in using the credentials administrator:admin.

To solve the lab, log in using the credentials wiener:peter and exploit the flawed access controls to promote yourself to become an administrator.
Lab link.

We log in to the admin panel, promote the user Carlos, and review the requests.

We send the request to the reporter. We look for an access control vulnerability as the referer URL in the request. We exit the admin user and enter the wiener user. By changing the user name and cookie values in the request, we bypass the access control and solve the lab.

More Lab

Bir yanıt yazın Yanıtı iptal et