[IDOR][translate.twitter.com] Opportunity to change any comment at the forum
Low
Vulnerability Details
POC: https://translate.twitter.com/forum/getting-started/topics/7037/posts/43287/edit
Steps to reproduce:
1) Go to any forums topic for example: https://translate.twitter.com/forum/getting-started/topics/7037
2) View source code of the page and take post id (screenshot "idor edit.jpg")
3) Append "/posts/*post_id*/edit" to url at the first step (screenshot "idor edit 2.jpg")
4) Make some change at the comment and save it
Actions
View on HackerOneReport Stats
- Report ID: 181748
- State: Closed
- Substate: resolved
- Upvotes: 38