Lab link.
This lab has an admin panel at
/admin
. It’s only accessible to logged-in users with aroleid
of 2.Solve the lab by accessing the admin panel and using it to delete the user
carlos
.You can log in to your own account using the following credentials:
wiener:peter
We log in with the account information provided and try the email update feature available in our account and check our request.
We see that the role id value is 1. If we make this value 2 as given to us in the question, we can become admin.
When sending the request, we add the role id value after the email.
Wiener user role is now admin and we delete carlos user.
Hello, I am Aleyna Doğan. I work as a Sr. Cyber Threat Intelligence Analyst. In my blog, we write blog posts that my friends and I want to share. Have a good read.