LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Joining any class without the teacher’s invitation in Khan Academy

3 years ago 182
BOOK THIS SPACE FOR AD
ARTICLE AD

Renganathan

Hi There,

Renganathan here.

Khan Academy VDP

This write-up is about a vulnerability that I found on khanacademy.org. Khan Academy Got a VDP on hackerone.

There was a virtual class that may be somewhat similar to google classroom I guess :)

I started testing with a few vulnerabilities like privilege escalation from student to teacher & unfortunately I couldn’t get one :/

So I was testing for the class joining functionalities and I found the class links were like:

khanacademy.org/join/A1B95FG6

I tested for IDOR and looking for similar class codes. But the chances of correct codes were very less and most of them were returning with 404 :(

So making things easy I used the below google dork to enumerate all the class code:

site:khanacademy.org/join/*

So I was able to enumerate all the classes and I joined one class :) as shown in the POC:

Resolved

Thanks for reading :)
Stay Safe.

https://www.instagram.com/renganathanofficial/

Read Entire Article
  3. Joining any class without the teacher’s invitation in Khan Academy

Related

Breaking Into Information Security as a Fresher: A Guide to Starting Your Journey

Breaking Into Information Security as a Fresher: A Guide to Starting Your Journey

Simple Tips for Bug Bounty Beginners: Escalating to XSS (XSS Series Part — 2)

Simple Tips for Bug Bounty Beginners: Escalating to XSS (XSS Series Part — 2)

AI vs. Hackers How Machine Learning Detects Network Intrusions in Real Time

AI vs. Hackers How Machine Learning Detects Network Intrusions in Real Time

When Trust Is Broken Network Attacks that Exploit Trusted Connections

When Trust Is Broken Network Attacks that Exploit Trusted Connections

Packet Sniffing Why Hackers Are Obsessed with Your Network Traffic

Packet Sniffing Why Hackers Are Obsessed with Your Network Traffic

Time Based SQL Injection Bug Hunting Methodology

Time Based SQL Injection Bug Hunting Methodology

Trending

1. Crown Jewel 2024
2. Rishabh Pant
3. Shubman Gill
4. Shahrukh Khan
5. All Souls Day
6. Deepika Padukone
7. Arvind Sawant
8. Ben Stokes
9. Rohit Bal
10. Shah Rukh Khan

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved