5.7 Lab: Weak isolation on dual-use endpoint | 2024
This lab makes a flawed assumption about the user’s privilege level based on their input. As a result, you can exploit the logic of its account management features to gain access to arbitrary users’ accounts. To solve the lab, access the administrator account and delete the user carlos | Karthikeyan Nagaraj
Published in
2 min readJan 26, 2024
Description
This lab makes a flawed assumption about the user’s privilege level based on their input. As a result, you can exploit the logic of its account management features to gain access to arbitrary users’ accounts. To solve the lab, access the administrator account and delete the user carlos.
You can log in to your own account using the following credentials: wiener:peter
Solution
- Log in to your Account with
wiener:peter - Make sure the Proxy and Intercept are on.
- Type Current pass, new Pass, confirm pass, and click submit to capture the request.
- On Burpsuite, change the username from wiener to
administrator - Also, Remove the current password parameter and send the request.
- Now, log out and log in to the Administrator Account with the password that you changed.
- Navigate to Admin Panel and delete the user Carlos to solve the Lab
A YouTube Channel for Cybersecurity Lab’s Poc and Write-ups
Telegram Channel for Free Ethical Hacking Dumps
Thank you for Reading!
Happy Ethical Hacking ~
Author: Karthikeyan Nagaraj ~ Cyberw1ng
