Cheesebook

The social media network for the everyday rat

Grab the "token" of user with id #9. solution.txt is available.

Home LoginRegister

WARNING - FLAG IDOR2 SPOILERS

<p>https://labs.hackxpert.com/IDOR/IDOR2/getToken.php?user=939</p><p>Found &lt;!---a href='getToken.php?user=2' class='w3-bar-item w3-button'&gt;getToken&lt;/a&gt;--&gt; after looking in Burp suite and doing POST, so I edited the url in my normal browser and got the flag. Not sure if I'm supposed to submit it somewhere but oh well!</p><p>d41d8cd98f00b204e9800998ecf8427e</p>
Posted by: test
Views: 0
2025-06-30 15:53:59

All rights reserved | 2025