Insecure Direct Object Reference
Contents
Finding resources by guessing their IDs 🤷♀️
i.e.
somewebsite.com/?id=1somewebsite.com/?id=2
🤔 I wonder if there's a somewebsite.com/?id=3???
Finding resources by guessing their IDs 🤷♀️
i.e.
somewebsite.com/?id=1somewebsite.com/?id=2
🤔 I wonder if there's a somewebsite.com/?id=3???