Burp Suite User Forum

web security academy development

maryam | Last updated: Jan 23, 2020 05:38AM UTC

i suggest to add discussion for each lab in web security academy it will be very helpful for example in lab (User ID controlled by request parameter with data leakage in redirect) which details is( This lab contains an access control vulnerability where sensitive information is leaked in the body of a redirect response.To solve the lab, obtain the API key for the user carlos and submit it as the solution.You can access you own account using wiener:peter. ) i just wanted to ask how can i make --an application does detect when the user is not permitted to access the resource, and returns a redirect to the login page--it may be simple question but i am a beginner so adding a discussion will be very useful

Ben, PortSwigger Agent | Last updated: Jan 23, 2020 08:19AM UTC

Hi, Thank you for your message. You are free to use our existing forum to create a public post in order to engage the Burp community (https://support.portswigger.net/customer/portal/questions/new). We are also in the process of upgrading our forum to add more features and functions, which should allow for greater interaction with other users. Please let us know if you require any further assistance.

You need to Log in to post a reply. Or register here, for free.