Skip to content

Contact us

Contact us

How can we help you?

There are no suggestions because the search field is empty.

Help Center
Hands-On Break/Fix Lesson Help
Broken Access Control Lesson Help

Security Journey Release Notes
- HackEDU Release Notes
- Security Journey Release Notes
Configuration and Setup
Training Library
Assessments
Assignments
- Setup and Configuration
- Assignment Features
Tournaments
Champion Passport
Reporting
- API
- Reporting FAQs
Customer Support & Feedback
Security Journey FAQs
Learner Resources
Hands-On Break/Fix Lesson Help
HackEDU Platform

June 2, 2025

Vulnerability Is Not Fixed (Broken Access Control | Improper Access Control)

This article provides instructions on how to resolve "vulnerability is not fixed" error.

Error:

The broken access control vulnerability has not been fixed.

Test

Sign in to SocialJourney using the email "maddieelyse@email.com" and password "monkey1".

Submit a post as Maddie Elyse ensuring intercept requests is toggled on, change the api/post/1 in the request header to api/post/2 and verify that the post wasn’t posted as another user.

Copyright © 2025, Security Journey