Bug Bounty Hunting | Hackersatty – Learn Ethical Hacking, Bug Bounty, And Cybersecurity Tips

Bug Bounty Blogs

Critical Security Vulnerability: Unauthenticated Access to /shipments/deleted 1 Endpoint Allows Irreversible Data Deletion

hackersatty June 2, 2025

Web applications often rely on API endpoints to manage critical functionalities, but when these endpoints lack proper security controls, they can lead to severe data breaches or disruptions. In this report, I detail a critical vulnerability I discovered in the shipment management module of a logistics platform, where a public API endpoint allowed unauthenticated deletion of shipment records. This issue posed a high-impact threat to business continuity and data integrity.

Bug Bounty Blogs

25+ Google Dorks for Bug Bounty: Find Exposed Signatures, NDAs & Confidential Docs

Powerful $1000 Bug Bounty Guide: Discover Hidden Endpoints in JavaScript JS Files

IDOR Vulnerability Exploited: 2025 Bug Bounty Case Study on Broken Access Control & Privilege Escalation

Critical Security Vulnerability: Unauthenticated Access to /shipments/deleted 1 Endpoint Allows Irreversible Data Deletion

$200 XSS Exploit: Bypass Cloudflare Using Waybackurls – A Complete Guide for Bug Hunters

Privilege Escalation in GraphQL – 1 Shocking Real-World Bug Bounty Exploit

5 Effective Bug Bounty Tips to Detect Unauthorized Access to Admin Pages

API Security: 1 Critical Bug Bounty Case Study on Swagger UI Vulnerability

Javascript analysis for Bug Bounty: 3 Step Guide to Find Critical Web Vulnerabilities

Tag: Bug Bounty Hunting

Critical Security Vulnerability: Unauthenticated Access to /shipments/deleted 1 Endpoint Allows Irreversible Data Deletion

Get the Latest Cybersecurity & Bug Bounty Drops