Client-Side Price Manipulation: Pay Whatever You Want at Checkout
Exploiting a server-side validation failure in OopsSec Store's checkout process to purchase products at arbitrary prices. OopsSec Store's checkout sends the order total straight from the browser. The server saves whatever it receives without recalculating from actual product prices. Change it to a p
ORIGINAL SOURCE โvia Dev.to
ADVERTISEMENT
โก STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING โRELATED ยท cyber
- [CYBER] Proposal on Play Store security measures (alternative to Google's mandatory "developer verification")
- [CYBER] Soludo vows crackdown on fake pastors in Anambra
- [CYBER] I have a malware and need help removing it. someone please help me ๐
- [CYBER] Air India fired over 1,000 staff in 3 years for ethical breach, says airline CEO
- [CYBER] Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak
- [CYBER] Linux Kernel Killswitch Proposed After Recent Vulnerability Disclosures