Business Logic Vulnerabilities - Lab #2 High-level logic vulnerability | Short Version

Поделиться
HTML-код
  • Опубликовано: 5 окт 2024
  • In this video, we cover Lab #2 in the Business Logic Vulnerabilities module of the Web Security Academy. This lab doesn't adequately validate user input. You can exploit a logic flaw in its purchasing workflow to buy items for an unintended price. To solve the lab, we buy a "Lightweight l33t leather jacket". You can log in to your own account using the following credentials: wiener:peter.
    ▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬
    Buy my course: academy.ranakh...
    ▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬
    Notes.txt document: github.com/rkh...
    Web Security Academy Exercise Link: portswigger.ne...
    Rana's Twitter account: / rana__khalil

Комментарии • 4

  • @mhrajon9558
    @mhrajon9558 7 месяцев назад +1

    Okay if we can't afford any item then we need to find vulnerability 😅😅😅😅 to afford it otherways. Thank you. ❤❤❤

  • @linuxluminary
    @linuxluminary 3 месяца назад

    Salam @RanaKhalil101 , just found this vulnerability in an ecommerce store. Reported it to the team. Thank you so much for the toturials!!!!! it is fun (:

    • @Fitnessghh
      @Fitnessghh 8 дней назад

      How do you report it? By yourself or through a middle man. Do you get paid for reporting? Thanks in advance!

  • @RanaKhalil101
    @RanaKhalil101  7 месяцев назад

    Want to gain access to the full Web Security Academy Series course that contains 140+ videos and 50+ hours of HD content covering 15 vulnerability categories ? Sign up to my course with the coupon 30PERCENTOFF to get 30% off : academy.ranakhalil.com/p/web-security-academy-video-series?coupon_code=30PERCENTOFF&product_id=4894910

Следующие
Автовоспроизведение
Business Logic Vulnerabilities - Lab #3 Inconsistent security controls | Short Version6:19Business Logic Vulnerabilities - Lab #3 Inconsistent security controls | Short Version
Business Logic Vulnerabilities - Lab #3 Inconsistent security controls | Short VersionRana Khalil
Просмотров 1,2 тыс.
Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Long Video16:47Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Long Video
Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Long VideoRana Khalil
Просмотров 966
Authentication Vulnerabilities - Lab #8 2FA broken logic | Short Version9:24Authentication Vulnerabilities - Lab #8 2FA broken logic | Short Version
Authentication Vulnerabilities - Lab #8 2FA broken logic | Short VersionRana Khalil
Просмотров 3,6 тыс.
Part 3 OPENING | Without any words by SIX LOUNGE | BLEACH: Thousand Year-Blood War | VIZ01:31Part 3 OPENING | Without any words by SIX LOUNGE | BLEACH: Thousand Year-Blood War | VIZ
Part 3 OPENING | Without any words by SIX LOUNGE | BLEACH: Thousand Year-Blood War | VIZvizmedia
Просмотров 1,1 млн
It’s Way Worse Than We Thought! #hurricanehelene22:20It’s Way Worse Than We Thought! #hurricanehelene
It’s Way Worse Than We Thought! #hurricaneheleneON Three
Просмотров 917 тыс.
6 Women Vs 2 Secret Men37:146 Women Vs 2 Secret Men
6 Women Vs 2 Secret MenNDL
Просмотров 1,5 млн
We Put Two Electric Motors in Hondas Smallest Sports Car and it Rips!25:22We Put Two Electric Motors in Hondas Smallest Sports Car and it Rips!
We Put Two Electric Motors in Hondas Smallest Sports Car and it Rips!Rich Rebuilds
Просмотров 332 тыс.
Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Short Video15:02Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Short Video
Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Short VideoRana Khalil
Просмотров 1,1 тыс.
Authentication Vulnerabilities | Complete Guide31:03Authentication Vulnerabilities | Complete Guide
Authentication Vulnerabilities | Complete GuideRana Khalil
Просмотров 16 тыс.
Cross Origin Resource Sharing (CORS) Vulnerability | BugBountyTraining | Bug Bounty Service5:41Cross Origin Resource Sharing (CORS) Vulnerability | BugBountyTraining | Bug Bounty Service
Cross Origin Resource Sharing (CORS) Vulnerability | BugBountyTraining | Bug Bounty ServiceMartin Voelk
Просмотров 10 тыс.
Business Logic Vulnerabilities - Lab #2 High-level logic vulnerability | Long Version27:23Business Logic Vulnerabilities - Lab #2 High-level logic vulnerability | Long Version
Business Logic Vulnerabilities - Lab #2 High-level logic vulnerability | Long VersionRana Khalil
Просмотров 1,1 тыс.
Business Logic Vulnerabilities - Lab #4 Flawed enforcement of business rule | Long Version30:36Business Logic Vulnerabilities - Lab #4 Flawed enforcement of business rule | Long Version
Business Logic Vulnerabilities - Lab #4 Flawed enforcement of business rule | Long VersionRana Khalil
Просмотров 878
[Part I] Bug Bounty Hunting for IDORs and Access Control Violations1:33:18[Part I] Bug Bounty Hunting for IDORs and Access Control Violations
[Part I] Bug Bounty Hunting for IDORs and Access Control Violationsrs0n_live
Просмотров 36 тыс.
PRO Vs AMATEUR Website Layouts (With Examples)23:05PRO Vs AMATEUR Website Layouts (With Examples)
PRO Vs AMATEUR Website Layouts (With Examples)DesignSpo
Просмотров 405 тыс.
Business Logic Vulnerabilities - Lab #5 Low Level Logic Flaw | Short Video13:54Business Logic Vulnerabilities - Lab #5 Low Level Logic Flaw | Short Video
Business Logic Vulnerabilities - Lab #5 Low Level Logic Flaw | Short VideoRana Khalil
Просмотров 1,2 тыс.
CORS - Lab #1 CORS vulnerability with basic origin reflection | Long Video16:41CORS - Lab #1 CORS vulnerability with basic origin reflection | Long Video
CORS - Lab #1 CORS vulnerability with basic origin reflection | Long VideoRana Khalil
Просмотров 18 тыс.
Blue vs Green Emoji Eating Challenge00:33Blue vs Green Emoji Eating Challenge
Blue vs Green Emoji Eating ChallengeMOOMOO STUDIO [무무 스튜디오]
Просмотров 3,3 млн
Помоги Nuggets Gegagedigedagedago удрать от бабульки Granny !00:21Помоги Nuggets Gegagedigedagedago удрать от бабульки Granny !
Помоги Nuggets Gegagedigedagedago удрать от бабульки Granny !Фани Хани
Просмотров 1,4 млн
ВЫЖИЛ В ДРЕВНЕМ ЕГИПТЕ!13:09ВЫЖИЛ В ДРЕВНЕМ ЕГИПТЕ!
ВЫЖИЛ В ДРЕВНЕМ ЕГИПТЕ!Бурёночек🛑
Просмотров 191 тыс.
открыли бесплатный магазин техники - все по 0 рублей ч13 - подарили пареньку хbox ,airpods и мобилу01:01открыли бесплатный магазин техники - все по 0 рублей ч13 - подарили пареньку хbox ,airpods и мобилу
открыли бесплатный магазин техники - все по 0 рублей ч13 - подарили пареньку хbox ,airpods и мобилуABRACADABRA TV
Просмотров 138 тыс.
🤣 Придумали, как зарабатывать, ничего не делая! И всё получилось! | Новостничок00:25🤣 Придумали, как зарабатывать, ничего не делая! И всё получилось! | Новостничок
🤣 Придумали, как зарабатывать, ничего не делая! И всё получилось! | НовостничокНОВОСТНИЧОК
Просмотров 1,3 млн
肉橙:不要以為我小就好忽悠,我這被珍珠奶茶是假的! #funny#萌娃#搞笑00:23肉橙:不要以為我小就好忽悠,我這被珍珠奶茶是假的! #funny#萌娃#搞笑
肉橙:不要以為我小就好忽悠,我這被珍珠奶茶是假的! #funny#萌娃#搞笑一只肉橙
Просмотров 11 млн
Russian fighter jet executes risky manoeuvre near US aircraft00:13Russian fighter jet executes risky manoeuvre near US aircraft
Russian fighter jet executes risky manoeuvre near US aircraftTRT World
Просмотров 1,2 млн
КОТЯТА НАУЧИЛИСЬ ГОВОРИТЬ#cat00:13КОТЯТА НАУЧИЛИСЬ ГОВОРИТЬ#cat
КОТЯТА НАУЧИЛИСЬ ГОВОРИТЬ#catЛайки Like
Просмотров 1,2 млн