One of my favourite (and oh so simple) hacker tricks is to abuse JSON support in APIs and pass TRUE instead of the actual API key. If the code does loose comparison, you don't need the key! 馃槑 馃槇 馃嵖
https://securinglaravel.com/p/security-tip-type-juggling#PHP#Laravel
Post
Replies:
0
No replies yet
Be the first to share your thoughts.
