webProeasy

Lab 259 — TalentBridge — IDOR in Employee Profile Endpoints

hackadvisor

Task: TalentBridge exposes employee onboarding profile endpoints with numeric IDs and weak access control. Solution: log in, enumerate employee IDs, change the profile ID, and read Sarah Mitchell's Internal Reference.

access_control idor employee_profile onboarding

idor_exploitationidentifier_enumeration

$ ls tags/ techniques/

access_control idor employee_profile onboarding

idor_exploitationidentifier_enumeration

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

Permission denied (requires tier.pro)

Sign in to access full writeups

Sign in with GitHub, Discord, or Google to continue. No email required.

$sign in

$ grep --similar

Similar writeups

[web][Pro]Lab 251 — PulseBoard — IDOR via Unauthenticated GraphQL User Profile Query— hackadvisor
[web][Pro]Lab 116 — InsightForge — IDOR via Undocumented Internal API— hackadvisor
[web][Pro]Lab 109 — TaskForge — IDOR in Account Settings API— hackadvisor
[web][Pro]Lab 15 — ProfileHub — IDOR in User Profile API— hackadvisor
[web][Pro]TeamForge — IDOR to Owner Account Takeover via Weak Passwords— hackadvisor