Excessive trust in client-side controls

By /
Excessive trust in client-side controls

Excessive trust in client-side controls

1: Access the Lab: Excessive trust in client-side controls.

Website: https://portswigger.net/web-security/logic-flaws/examples/lab-logic-flaws-excessive-trust-in-client-side-controls

Excessive trust in client-side controls 1

2: Log in to the account.

Excessive trust in client-side controls 2

3: The Username and Password?

Username: wiener

Password: peter

Excessive trust in client-side controls 3

4: Open the Burp Suite and On the Intercept.

5: Buy the Lightweight “l33t” Leather Jacket.

Excessive trust in client-side controls 4

6: Add to the cart product.

Excessive trust in client-side controls 5

7: Send to the Repeater.

Shortcut: ctrl + r

Excessive trust in client-side controls 6

8: Off the Intercept.

Excessive trust in client-side controls 7

10: Go to the Add to card and check the Lightweight “l33t” Leather Jacket price.

Excessive trust in client-side controls 8

11: The Lightweight “l33t” Leather Jacket price is $1227.00.

12: Reduce the Lightweight “l33t” Leather Jacket price in the Burp Suite and send the response.

Excessive trust in client-side controls 9

13: Refresh the Add to card page.

Shortcut key: f5

14: The price of the Lightweight “l33t” Leather Jacket has been reduced.

15: Place the order.

16: The order has been placed.

17: LAB has been completed.

Excessive trust in client-side controls 11

PortSwigger Labs

Must Read

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top