Update labs.md

gkcodez · Nov 16, 2024 · a149185 · a149185
1 parent 70df19e
commit a149185
Showing 1 changed file with 19 additions and 18 deletions.
diff --git a/vulnerabilities/server-side-vulnerabilities/access-control/contents/labs.md b/vulnerabilities/server-side-vulnerabilities/access-control/contents/labs.md
@@ -3,30 +3,31 @@
 ## Portswigger
 
 1. [Unprotected admin functionality](https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality)
- - Navigate to `<LAB_URL>/robots.txt`.
- - Find the administrative panel URL in the disallow parameter.
- - Navigate to the administrative panel and delete the user `carlos`.
+   - Navigate to `<LAB_URL>/robots.txt`.
+   - Find the administrative panel URL in the disallow parameter.
+   - Navigate to the administrative panel and delete the user `carlos`. 
+2. [Unprotected admin functionality with unpredictable URL](https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality-with-unpredictable-url)
+   - Search for `admin` in index.html.
+   - Locate the administrative panel URL in a javascript function.
+   - Navigate to the administrative panel and delete the user `carlos`.
+3. [User role controlled by request parameter](https://portswigger.net/web-security/access-control/lab-user-role-controlled-by-request-parameter)
+
+4. [User role can be modified in user profile](https://portswigger.net/web-security/access-control/lab-user-role-can-be-modified-in-user-profile)
 
-3. [Unprotected admin functionality with unpredictable URL](https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality-with-unpredictable-url)
+5. [User ID controlled by request parameter ](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter)
 
-4. [User role controlled by request parameter](https://portswigger.net/web-security/access-control/lab-user-role-controlled-by-request-parameter)
+6. [User ID controlled by request parameter, with unpredictable user IDs](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-unpredictable-user-ids)
 
-5. [User role can be modified in user profile](https://portswigger.net/web-security/access-control/lab-user-role-can-be-modified-in-user-profile)
+7. [User ID controlled by request parameter with data leakage in redirect ](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-data-leakage-in-redirect)
 
-6. [User ID controlled by request parameter ](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter)
+8. [User ID controlled by request parameter with password disclosure](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-password-disclosure)
 
-7. [User ID controlled by request parameter, with unpredictable user IDs](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-unpredictable-user-ids)
+9. [Insecure direct object references](https://portswigger.net/web-security/access-control/lab-insecure-direct-object-references)
 
-8. [User ID controlled by request parameter with data leakage in redirect ](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-data-leakage-in-redirect)
+10. [URL-based access control can be circumvented](https://portswigger.net/web-security/access-control/lab-url-based-access-control-can-be-circumvented)
 
-9. [User ID controlled by request parameter with password disclosure](https://portswigger.net/web-security/access-control/lab-user-id-controlled-by-request-parameter-with-password-disclosure)
+11. [Method-based access control can be circumvented](https://portswigger.net/web-security/access-control/lab-method-based-access-control-can-be-circumvented)
 
-10. [Insecure direct object references](https://portswigger.net/web-security/access-control/lab-insecure-direct-object-references)
+12. [Multi-step process with no access control on one step](https://portswigger.net/web-security/access-control/lab-multi-step-process-with-no-access-control-on-one-step)
 
-11. [URL-based access control can be circumvented](https://portswigger.net/web-security/access-control/lab-url-based-access-control-can-be-circumvented)
-
-12. [Method-based access control can be circumvented](https://portswigger.net/web-security/access-control/lab-method-based-access-control-can-be-circumvented)
-
-13. [Multi-step process with no access control on one step](https://portswigger.net/web-security/access-control/lab-multi-step-process-with-no-access-control-on-one-step)
-
-14. [Referer-based access control](https://portswigger.net/web-security/access-control/lab-referer-based-access-control)
+13. [Referer-based access control](https://portswigger.net/web-security/access-control/lab-referer-based-access-control)