VAPT: Broken Access Controls

XMLWordPrintable

    • Type: Task
    • Resolution: Done
    • Priority: Highest
    • 3.6.0
    • Affects Version/s: None
    • AMRIT Sprint 32, AMRIT Sprint 36, AMRIT Sprint 39, AMRIT Sprint 38, AMRIT Sprint 40, AMRIT Sprint 41, AMRIT Sprint 42, AMRIT Sprint 43, AMRIT Sprint 44, AMRIT Sprint 45, AMRIT Sprint 46
    • ECD
    • Prod

      Identified a Broken Access Control vulnerability in the application, which allows unauthorized users to access resources or perform actions that should be restricted based on user roles or permissions.

      uatamrit.piramalswasthya.org:8080/ecd-ui-next/supervisor/innerpage-supervisor?data=MapQuestionnaireConfiguration 

      User Role: User

      Mapping with Checklist: OWASP Authorization Testing

        1. image-2025-08-18-16-00-29-342.png
          image-2025-08-18-16-00-29-342.png
          102 kB
        2. image-2025-09-17-15-55-52-334.png
          image-2025-09-17-15-55-52-334.png
          58 kB
        3. image-2025-09-24-16-23-25-765.png
          image-2025-09-24-16-23-25-765.png
          67 kB
        4. image-2025-09-24-16-24-52-902.png
          image-2025-09-24-16-24-52-902.png
          26 kB

              Assignee:
              Deep Shikha
              Reporter:
              Shashank Kharkwal
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: