LogicalBreach Academy

Business Logic Bypass Allows Setting “Read Access” Role Without Pro Plan Subscription | Free Bug Bounty Writeup | LogicalBreach Academy

Writeups Cheatsheets Tools Authors Noc Pricing

Back

Business Logic Errors (CWE-840)CVSS 4

Business Logic Bypass Allows Setting “Read Access” Role Without Pro Plan Subscription

hackerone-reports

March 16, 2026

54 views

Save

€0

Vulnerability Summary

HackerOne disclosed report --> https://hackerone.com/reports/3591764 by ziadmomen

Summary:

A business logic flaw allows a user with a free plan to generate an invitation link that assigns the Read Access (Read) role, even though this role is intended to be restricted to users with a Pro Plan subscription. By manipulating the invitation creation process, an attacker can create an invite link that grants this restricted role without having the required paid subscription.

Steps To Reproduce:

Create two accounts one for the owner and the second one for the user who will be invited to the project.
From the owner account create a project.

Identification Required

You must be logged in to read this writeup. Join our community of researchers today.

hackerone-reports

€799 Documented

Profile →

Related Writeups

hackerone-reports

Authorization Bypass in Starknet Snap via enableAuthorize parameter leads to unauthorized transaction signing

HackerOne disclosed report --> https://hackerone.com/reports/3507241 by aszx87410

Read Writeup →

pyus3r

Exploiting Business Logic: Inventory Depletion via Parameter Tampering

This writeup documents a critical Business Logic Error (CWE-840) discovered in the payment flow of an event-driven e-commerce platform.

Read Writeup →

Discussion

No comments yet.

Be the first to share your thoughts

Premium writeups about bug bounty hunting and web security.
Written by real security researchers.

Navigation

Writeups Cheatsheets Tools Authors Noc Pricing

Contactcontact@logicalbreach.com

RSS FeedPrivacy PolicyTerms of Service