Question

Escalating application logic errors and broken access control depends entirely on the nature of the flaw you find. But a general rule of thumb is that you can try to combine the application logic error or broken access control with other vulnerabilities to increase their impact.

不断升级的应用逻辑错误和破损的访问控制完全取决于您发现的缺陷性质。但是一个通常的经验法则是，您可以尝试将应用程序逻辑错误或破损的访问控制与其他漏洞相结合，以增加它们的影响力。

For example, a broken access control that gives you access to the admin panel with a console or application deployment capabilities can lead to remote code execution. If you can find the configuration files of a web application, you can search for CVEs that pertain to the software versions in use to further compromise the application. You might also find credentials in a file that can be used to access different machines on the network.

例如，破坏了访问控制的漏洞会使您通过控制台或应用程序部署功能访问管理员面板，从而导致远程代码执行。如果您可以找到 Web 应用程序的配置文件，则可以搜索适用于所使用软件版本的 CVE，以进一步破坏该应用程序。您还可以在文件中找到凭证，以用于访问网络上的不同计算机。

While the impact of a vulnerability like SQL injection or stored XSS is often clear, it isn’t always apparent what attackers can achieve with application logic errors and broken access control vulnerabilities. Think of ways malicious users can exploit these vulnerabilities to the fullest extent, and communicate their impact in detail in your report.

虽然像 SQL 注入或存储的 XSS 这样的漏洞带来的影响往往是明显的，但攻击者利用应用逻辑错误和破损的访问控制漏洞所能达到的目的并不总是显然的。请考虑恶意用户如何充分利用这些漏洞，并在报告中详细描述它们的影响。