Skip to main content
All CollectionsHackEDU Lesson HelpBroken Access Control Lesson Help
Vulnerability Is Not Fixed (Broken Access Control | Improper Access Control)
Vulnerability Is Not Fixed (Broken Access Control | Improper Access Control)

This article provides instructions on how to resolve "vulnerability is not fixed" error.

Rachel Yonan avatar
Written by Rachel Yonan
Updated over 2 months ago

Error:

The broken access control vulnerability has not been fixed.

Test

Sign in to SocialJourney using the email "maddieelyse@email.com" and password "monkey1".

Submit a post as Maddie Elyse ensuring intercept requests is toggled on, change the api/post/1 in the request header to api/post/2 and verify that the post wasn’t posted as another user.

Did this answer your question?