Techly NewsGet the app

Get the latest tech news

How to Hack the Breakthrough Prize (Ft. Session Confusion)


← Back to varun.ch The Breakthrough Junior Challenge is an annual, global science video competition for high-school students. It's run by Breakthrough Initiatives, the same organization that runs the Breakthrough Prize events.

The Breakthrough Challenge website allows participants to register accounts, which are used to submit personal details and video entries. This creates a security loophole, as a token issued for one context (e.g., a public site) can be accepted by another (e.g., an internal control panel), granting unintended access. Fortunately, some of the interface was broken (relating to user management) - likely a side effect of my account not really existing on the admin site.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of breakthrough prize

breakthrough prize

Photo of ft.session confusion

ft.session confusion

« Meta’s Llama AI models get multimodal
Physicists Reveal a Quantum Geometry That Exists Outside of Space and Time »