← All Tags
# vulnerabilities โ†’ security โ†’ bug-bounty

2 links tagged with all of: vulnerabilities + security + bug-bounty

Click any tag below to further narrow down your results

+ mc-donalds (1) + reporting (1) + idor (1) + access-control (1)

Links

Access Denied? Not Always! Hunting IDORs and Access Control Flaws ๐Ÿšช๐Ÿ”‘๐Ÿ”“

The article explores the critical web vulnerability known as Insecure Direct Object References (IDOR), a common issue in access control that allows unauthorized users to access or modify data by manipulating identifiers in URLs and requests. It emphasizes the importance of proper access control mechanisms, outlines various types of access control flaws, and provides practical strategies for identifying and exploiting these vulnerabilities during bug bounty hunting.
Saved by tldr-importer ยท Last saved October 29, 2025 ยท 6 min read
+ idor + access-control vulnerabilities โœ“ bug-bounty โœ“ security โœ“

How I Hacked McDonald's (Their Security Contact Was Harder to Find Than Their Secret Sauce Recipe) | bobdahacker

A security researcher details their experience discovering multiple vulnerabilities in the McDonald's app and internal systems, highlighting poor security practices and difficulties in reporting issues. Despite successfully prompting fixes, the researcher emphasizes the need for better security channels and practices within the company.
Saved by tldr-importer ยท Last saved October 29, 2025 ยท 4 min read
security โœ“ vulnerabilities โœ“ + mc-donalds bug-bounty โœ“ + reporting