1. Stripe Sandbox API Anomaly: Authenticated Users Blocked from Accessing Their Own Customer Records
A critical access control anomaly has been identified in Stripe's sandbox environment, where authenticated users are being blocked from retrieving their own customer data. During a penetration test, a call to the `GET /v1/customers/{id}` endpoint with a valid customer ID belonging to the authenticated account returned ...