writeups.xyz / How I was able to modify and delete any user’s data file (filestack API)

Submitter : c2a

Date: 31 August 2023

Bounty : undisclosed

Vulnerabilities :

• Hardcoded API Keys

Programs :

• Undisclosed

Authors :

• Spideynati (@Yashparwekar)

Link :
https://spideynati.medium.com/how-i-was-able-to-modify-and-delete-any-users-data-file-filestack-api-7377bc52856f