404Yeti here. Today we’re cutting into another BugForge challenge, this time focusing on Tanuki and an Insecure Direct Object Reference (IDOR) vulnerability hiding behind a simple numeric pattern. This is the kind

1. 404Yeti here. Today we’re stepping into another BugForge challenge, this time carving open Cheesy Does It. What looked like an ordinary login portal turned out to be sitting on a brittle

1. Hey everyone — 404Yeti here, back with another BugForge challenge. Today we’re revisiting Cafe Club, but this time we’re focusing purely on an IDOR vulnerability and how it can scale into

Hey everyone — 404Yeti here, back with another BugForge challenge. Today we’re revisiting Shady Oaks Financial, but this time… we’re breaking the bank using a race condition attack. ❄️ This one is all

Hey everyone — 404Yeti here, back with another BugForge challenge. Today we’re working on the GiftLab web app, and this one is a great example of why you should never trust encoded data