Logic App 01 - Tamper Trigger Parameter

Tamper Trigger Parameter

信息

Scenario

Some developers leave some sensitive parameters that reveal sensitive data. Find the parameter in the URL and obtain the flag.

Overview

What is a logic app?

Azure Logic Apps is a cloud-based service provided by Microsoft Azure that allows us to create and run automated workflows and integrate various applications, systems, and services.

What is Requests trigger?

Azure Logic Apps, the "Requests" trigger is a commonly used trigger that allows us to initiate a workflow whenever an HTTP request is received.

What is IDOR?

IDOR, or Insecure Direct Object Reference, is a type of security vulnerability that occurs when an application provides direct access to objects based on user-supplied input. In simpler terms, it means that an attacker can manipulate input, such as URLs or form parameters, to gain unauthorized access to data.

Hint

• IDORs are common web application vulnerabilities.

Impact

• Logic app using request trigger with parameter here acted as an IDOR vulnerability. When triggered with the "admin" parameter the logic app revealed sensitive data.

Reference

• Logic Apps Docs
• Logic Apps Docs

题目给出的是 TriggerURL

直接 GET 请求一下看看

注意到 url 中的 {admin} 参数

修改为 admin

Flags

What was the parameter which revealed the flag value? (admin or debug)

admin

What is the flag value we obtain ?

aswrafuk735asaetbjv735