H4x0r.DZ🇩🇿
@h4x0r_dz
Hack the Planet
24-12-2015 19:21:41
9,5K Tweets
49,9K Followers
1,6K Following
many APIs are vulnerable to 'JSON Patch' where you have access to the op, you can add, remove, replace, move, copy
example :
{ 'op': 'replace', 'path': '/role', 'value': 'admin' },
more info :
datatracker.ietf.org/doc/html/rfc69…
jsonpatch.com
#BugBounty #bugbountytips