Exploit Findings on Web Applications

I don’t primarily focus on penetration testing or finding security vulnerabilities in applications. However, I occasionally take an interest in exploring applications that appear to be vulnerable and exploitable.

Here are some of the Proof of Concept (PoC) exploits that I have come across:

1. eLearning Platform - universitasmandiri.ac.id (subdo elearning, pmb)

   • Issue: Broken Access Control, SQL Injection, Stored XSS etc.
   • Status: The issue has not been fixed as of now. Due to privacy and security concerns, I cannot share the PoC link.

2. PT Plasindo Lestari - plasindolestari.co.id/etesting/

   • Issue: Broken Access Control
   • PoC: YouTube

Please note that these findings are shared for educational purposes only. I encourage responsible disclosure and recommend contacting the affected parties to report vulnerabilities before making them public.