Web Security Academy Solutions

⌘Ctrlk

Web Security Academy Solutions

Server-Side Topics
Advanced Topics

Powered by GitBook

On this page

Advanced Topics

GraphQL API Vulnerabilities

Lab: Accessing private GraphQL posts Lab: Accidental exposure of private GraphQL fields Lab: Finding a hidden GraphQL endpoint Lab: Bypassing GraphQL brute force protections Lab: Performing CSRF exploits over GraphQL

PreviousLab: Exploiting insecure output handling in LLMs NextLab: Accessing private GraphQL posts