A deeper look into how a GraphQL IDOR vulnerability enabled cross-account manipulation of profile pictures due to shared object references and …
Abusing GraphQL IDOR to Delete Another User’s Profile Picture
A deeper look into how a GraphQL IDOR vulnerability enabled cross-account manipulation of profile pictures due to shared object references and …