Insecure Design Demo

Vulnerable Version

The approval workflow can be bypassed by modifying client data, allowing unauthorized approvals.

Secure Version

Server-side validation enforces the approval process preventing unauthorized actions.