Course
In this lab, you'll explore a common mistake in modern frameworks where sensitive data can be exposed through different representations of the same database record. By altering the URL, you'll learn how to access JSON representations that might include unmasked sensitive data, even if the HTML representation hides it.
Skills covered
Authentication
Authorisation
CWE-285
Included with PRO
Full course content
2 videos
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
