bola

1 article
sort: new top best
clear filter
bug-bounty229 google197 microsoft163 facebook157 apple120 rce91 exploit74 web364 open-source44 writeup36 ai-agents36 docker35 defi34 aws34 malware34 cve33 smart-contract33 cloudflare32 access-control31 react31 ssrf31 dos30 sqli29 ethereum28 supply-chain26 xss23 account-takeover22 bragging-post22 node22 smart-contract-vulnerability21 race-condition20 automation20 wordpress20 tool19 oauth19 browser19 idor19 cors19 privilege-escalation18 machine-learning18 authentication-bypass18 cloud17 ctf17 llm17 buffer-overflow16 rust16 phishing16 sql-injection16 code-generation15 denial-of-service15
0 6/10
How I Exploited Three API Vulnerabilities in a Banking Application
tutorial

Walkthrough of exploiting three common API vulnerabilities—BOLA (Broken Object-Level Authorization), Broken Authentication, and BOPLA (Broken Object Property-Level Authorization)—in the Damn Vulnerable Bank deliberately vulnerable application using Burp Suite.

bola broken-authentication bopla api-security banking burp-suite authorization vulnerable-app damn-vulnerable-bank
Burp Suite Damn Vulnerable Bank Adeola Odunlade
adeolaodunlade.medium.com · Odunlade Adeola · 19 hours ago · details