1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Plausible Hacking Technique

Discussion in 'Ethical hacking' started by bluehenroot, Dec 4, 2008.

  1. bluehenroot

    bluehenroot New Member

    Joined:
    Dec 4, 2008
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    I'm trying to implement security on an application I'm currently designing.

    Essentially user's are going to log have certain functionality available in certian locations.

    Example

    User can query invoices, and create orders for location 1.
    The same user can query invoices, and process payments for location 2.

    I'm wondering if there are any hacking techniques out there that would allow the user to the some how change the a session object/request that would the user logged in working in location 2 to somehow process a payment for location 1.

    I hope my question is clear enough.

    Thank you.
     
  2. neo_vi

    neo_vi New Member

    Joined:
    Feb 1, 2008
    Messages:
    722
    Likes Received:
    15
    Trophy Points:
    0
    Occupation:
    Software engineer
    Location:
    Earth
    Home Page:
    make ur query much clear to get an answer
     

Share This Page