Site icon API Security Blog

Privilege Escalation

github.com/bytebase/bytebase is vulnerable to privilege escalation. The vulnerability exists due to a lack of verification and validation of users allowing an attacker to access admin ‘projects’ at endpoint “/api/project?user=${userId}”.Read More

Exit mobile version