Sep 14, 2025 · 3 min read · Introduction Hello everyone! Today, I’m sharing a story about a business logic vulnerability I found in the checkout flow of a major professional networking platform (let’s call it “example.com” to comply with disclosure rules). This bug allowed me t...
Join discussion
Mar 21, 2025 · 4 min read · This lab's two-factor authentication is vulnerable due to its flawed logic. To solve the lab, access Carlos's account page. Your credentials: wiener:peter Victim's username: carlos Analysis: Step 1: Observing the Authentication Process The first...
Join discussionMar 20, 2025 · 3 min read · Step 1: Log in to the Application Open the lab in your browser. Log in using the provided credentials: Username: wiener Password: peter Navigate to the product page and locate the "Lightweight l33t leather jacket". Step 2: Add the Jacket to...
Join discussion