Go4Expert

Go4Expert (http://www.go4expert.com/)
-   Ethical hacking (http://www.go4expert.com/forumdisplay.php?f=56)
-   -   Plausible Hacking Technique (http://www.go4expert.com/showthread.php?t=15400)

bluehenroot 4Dec2008 21:40
Plausible Hacking Technique
 
I'm trying to implement security on an application I'm currently designing.

Essentially user's are going to log have certain functionality available in certian locations.

Example

User can query invoices, and create orders for location 1.
The same user can query invoices, and process payments for location 2.

I'm wondering if there are any hacking techniques out there that would allow the user to the some how change the a session object/request that would the user logged in working in location 2 to somehow process a payment for location 1.

I hope my question is clear enough.

Thank you.

neo_vi 6Dec2008 11:54
Re: Plausible Hacking Technique
 
make ur query much clear to get an answer


All times are GMT +5.5. The time now is 10:15.