🛒 QuickCart
PRACIVO LAB — INTENTIONALLY VULNERABLE
Shop
Checkout
Orders
DOM XSS
Clickjacking
⚠️
Pracivo Security Lab
— DOM XSS, clickjacking, price manipulation in checkout, IDOR on orders.
Order #1001
Field
Value
Order ID
1001
Customer
alice
Product
Pro Laptop
Amount
$1299.99
Status
shipped
Hint: try /order/1002 and /order/1003 — no login required to view other customers' orders.