Lab: Weak isolation on dual-use endpoint ( Business Logic Vulnerabilities ) #lab7

Solution:

• Access the lab go to the my account, then Login using given credentials.
• Next explore all functions that the application have.
• We see we have password change functionality, So change it then go to burp to see POST /my-account/change-password and how works, so send it to repeater.
• In burp if we remove current-password parameter entirely, it doesnot affect the password change functionality & we still able to change the password.
• So next, in burp set user name administrator and send it again, It works we change the password of administrator .

• Next Login using administrator & password we set , then delete user carlos to Solve the Lab.