OWASP API Security Top 10 - API1:2023 - Broken Object Level Authorization
Previously developers used the sequential number as userID such as 699,700, 7001 and so on. So all an attacker had to do was either subtract or add ''1" to the current userID the attacker had access to, nowadays a web application has become smarter a...
darshan-ptl.hashnode.dev4 min read