We were able to access a live chat application, and when we clicked the View Transcript button, it downloaded the chat to our desktop using a GET request as below :
The file name was 2.txt; we changed it to 1.txt and were able to exploit a simple IDOR and read another user’s chat and were able to get a password
We used that password to log in as Carlos and solved the lab
