Press enter or click to view image in full size
Hello Hackers! 👋
It’s been a year since my last write-up, so I thought lets share something interesting.
The application I was testing had a structured hierarchy with six different user roles. Each role had its own specific dashboard and unique permissions.
Naturally, I started at the very bottom: the lowest privileged user.
My mission? See if I could “jump” from my restricted account into the shoes of an Admin.
Press enter or click to view image in full size
My first instinct was to try the easy stuff. I logged in and tried to manually change the URL. If the admin dashboard is at /users, maybe I can just type that in?No luck.
Press enter or click to view image in full size
Next, I fired up my proxy to intercept the web requests. I tried modifying the API endpoints directly in the background,Still nothing.