< Back





2. Unprotected admin functionality with unpredictable URL

We're asked to delete the user "carlos" from the website using a known vulnerability where the
admin panel is unprotected. The difficulty is increased because the URL is unpredictable. We search
the contents of the HTML response and discover a script used to enable and disable the admin panel
linked based on whether the current user isAdmin. This HTML provides us with the endpoint address
of the unpredictable admin panel.


Solution