CyberMinds Task Knowledge: #111 CTF-07 Web Exploit Triage (IDOR)CyberMinds Task Knowledge: #111 CTF-07 Web Exploit Triage (IDOR)
@egeuysall · Apr 21, 2026
Issue: https://github.com/Cyber-Minds/CyberMinds/issues/111
Owner: @entyX
Due: 2026-04-24
Objective
Ship advanced application-security triage challenge focused on IDOR pattern detection and mitigation design.
Recommended Build Plan
- Provide sanitized request/response artifacts with object-access flaws.
- Require learners to identify insecure object reference paths.
- Require mitigation recommendations with object-level authorization controls.
Security And Safety
- No exploit payloads or abuse instructions.
- No live tokens/sessions/user data in artifacts.
- Require least-privilege and authorization-boundary reasoning in solutions.
Quality Checks
- Rubric scores both finding accuracy and mitigation correctness.
- Wording stays defensive and education-first.