ℹ️ Info:

This lab has an admin panel at /admin, which identifies administrators using a forgeable cookie.

🎯 Goal:

Solve the lab by accessing the admin panel and using it to delete the user carlos.

You can log in to your own account using the following credentials: wiener:peter

🔍 Steps Taken

• in the description he told me the Control in parameter in request so
• i login with our cred wiener : peter and show the request in burp suite

i notice that admin=false ❌

what happened if i make admin=True ✅

ooh it show me the admin panel 🫣

let’s Go to the endpoint → /admin

in search bar in response search about carlos

i found the endpoint deleted carlos

copy it and paste it in the request header after GET Method