Access control - Insecure Direct Object References

Objective: This lab stores user chat logs directly on the server’s file system, and retrieves them using static URLs. Solve the lab by finding the password for the user carlos, and logging into their account.

1. Upon logging in we will notice a Live chat functionality on the top right corner. If we submit a random message and click View transcript our conversation, named 2.txt, will be downloaded:

   

   

   

2. Since our log is 2.txt it is only logical that 1.txt will exist: