Edit Another User's Profile
Lab 18: Insecure Direct Object References - Edit Another User's Profile

Go to user profile page: https://127.0.0.1/index.php?page=view-account-profile.php&uid=1
Only changing the uid value parameter to 5 we can see the relative user: http://127.0.0.1/index.php?page=view-account-profile.php&uid=5

Last updated