Exploitation of BOLA Vulnerability in OopsSec Store Wishlist Feature

The article demonstrates the exploitation of a Broken Object Level Authorization (BOLA) vulnerability in the wishlist feature of the OopsSec Store. Although the API correctly authenticates users, it does not verify object ownership, allowing any authenticated user to access arbitrary wishlists by manipulating the identifier in API requests. The vulnerability enables access to an internal administrator's wishlist containing a sensitive note with a flag value, representing critical information for the company. The exploitation is carried out by modifying the wishlist identifier in the API URL to target an unauthorized wishlist. The fix requires verifying the user's ownership before returning wishlist data.