Logic Bugs

Apps doing dumb stuff they weren’t supposed to.

Recent

🟥Exploiting the Authentication Flow to Block Any User from Logging In/Resetting Password + An IDOR🟧Logic flaw k1lled business messaging for all users🟩Logic flaw led to a $$$ privilege escalation🟧Logic flaw led to PrivEsc: I used a feature to bypass a restriction🟥Logic Flaw: I Can Block You from Accessing Your Own Account