Story of my first Bug on #jiomart parameter Temparing

Hello Everyone,

So whats is Parameter Temparing

The Web Parameter Tampering attack is based on the manipulation of parameters exchanged between client and server in order to modify application data, such as user credentials and permissions, price and quantity of products, etc. Usually, this information is stored in cookies, hidden form fields, or URL
Query Strings, and is used to increase application functionality and control.

Let us kick of this process with #Jiomart First

I first try to tamper with the value of a product which will later on be added to the cart. Then I fire the Burpsuite and start looking for the parameter values. I realise that I can’t get any parameter values because of the security measures taken by Jio.

In the Cart, there is button that says: Place A Order. I captured requests using Burpsuite; but I was still unable to get parameter Value.

I then moved on to the Make Payment Page. Here I performed the same steps. I tried captured requests using Burpsuite and this time I was successful. I got the value of the parameter because there was no encryption at this point.

I then changed the amount Parameter to 10 and then forwarded the requests. It displayed the information that said the Error Amount was Less than the Cart value. The question that might arise is how? What happened at the backend? The answer to such a seemingly complex question is somewhat simple. At the backend, the cart value was compared with amount that was to be paid, a discrepancy was observed and hence an error was thrown.

UFF! Now what to do? The answer again; is simple. Change the value of amount to cart value and then forward the requests. After forwarding the requests, I landed on the Payment Page.

I started the Payment Process and then began to capture the Requests. At this point, I came across something really interesting.

I changed the Order total value to 10 and then forward the request. After that I logged into my Phone Pay account(an online service) and BOOM the value has been changed to 10. After completing the payment process the order was placed.

Thanks Aishwarya for Editing.

Thank you for reading.