.png)
9 months ago
72 BOOK THIS SPACE FOR AD
ARTICLE ADThis lab implements access controls based partly on the HTTP method of requests. You can familiarize yourself by logging in using Admin Account. To solve the lab, exploit the flawed access controls to promote yourself to become an administrator | Karthikeyan Nagaraj
This lab implements access controls based partly on the HTTP method of requests. You can familiarize yourself with the admin panel by logging in using the credentials administrator:admin.
To solve the lab, log in using the credentials wiener:peter and exploit the flawed access controls to promote yourself to become an administrator.
Log in to the Admin Account and click the Admin PanelChoose Carlos, Click Upgrade, Capture the request and send it to Repeater.Logout from the Account, Log in to wiener Account and capture the request of My-Account or Anything which consists of Wiener’s Session Cookie.Copy that Session, go to the repeater, and paste the session into the request that we captured from the Admin’s Account.Change the Value of the username to wiener, Right click on the request, click Change request Method, and send the request.The Lab will be solved then.A YouTube Channel for Cybersecurity Lab’s Poc and Write-ups
Telegram Channel for Free Ethical Hacking Dumps
Thank you for Reading!
Happy Ethical Hacking ~
Author: Karthikeyan Nagaraj ~ Cyberw1ng
Bengali (Bangladesh) · 
English (United States) ·