.png)
9 months ago
68 BOOK THIS SPACE FOR AD
ARTICLE ADThis lab has an admin panel with a flawed multi-step process for changing a user’s role. You can familiarize yourself with the admin panel by logging in using the credentials administrator: admin. To solve the lab, exploit the flawed access controls to promote yourself to become an administrator | Karthikeyan Nagaraj
This lab has an admin panel with a flawed multi-step process for changing a user’s role. You can familiarize yourself with the admin panel by logging in using the credentials administrator:admin.
To solve the lab, log in using the credentials wiener:peter and exploit the flawed access controls to promote yourself to become an administrator.
Log in to the Admin Account and click the Admin PanelChoose Carlos, Click Upgrade, and Capture the 2nd request that contains the parameter confirmation=true and send it to Repeater.Logout from the Account, Log in to wiener Account and capture the request of My-Account or Anything which consists of Wiener’s Session Cookie. Or you can use Cookie Editor to get the cookie of the wiener.Copy that Session cookies, go to the repeater, and paste the session into the request we captured from the Admin’s Account.Change the Value of the username to wiener, and send the request.The Lab will be solved then.A YouTube Channel for Cybersecurity Lab’s Poc and Write-ups
Telegram Channel for Free Ethical Hacking Dumps
Thank you for Reading!
Happy Ethical Hacking ~
Author: Karthikeyan Nagaraj ~ Cyberw1ng
Bengali (Bangladesh) · 
English (United States) ·