#49

How to make money with IDORs? IDOR case study

IDORs are often recommended as the easy vulnerability class, good to start the bug hunting journey. “Just change the ID in the URL parameter” they say. But are they really that easy? Well, there’s only one way to find out - to do the case study. This week, I analysed...