Course
In this challenge, AppSec engineers and web hackers learn to identify and exploit an IDOR vulnerability in a Mongo-based application. Your task is to retrieve the secret key stored in the admin's account by uncovering how the application leaks user identifiers.
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
