From 9bb2618be8104aa89339f389391b5903b0057cae Mon Sep 17 00:00:00 2001
From: David Sopas <11536578+dsopas@users.noreply.github.com>
Date: Wed, 25 Sep 2024 17:03:51 +0100
Subject: [PATCH] Update references.md

Added gRPC writeup on Zenly
---
 docs/content/references.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/content/references.md b/docs/content/references.md
index a3a590d..b753898 100644
--- a/docs/content/references.md
+++ b/docs/content/references.md
@@ -114,6 +114,7 @@ Here you can find a variaty of resources to help you out on the API security pat
 - [vAPI walkthrough](https://zerodayhacker.com/vapi-walkthrough/)
 - [DVGA walkthrough](https://zerodayhacker.com/dvga-walkthrough/)
 - [VAmPI walkthrough](https://zerodayhacker.com/vampi-walkthrough/)
+- [Zenly Fixes User Data Exposure and Account Takeover Risks](https://checkmarx.com/blog/zenly-fixes-user-data-exposure-and-account-takeover-risks/)
 ### BOLA / IDOR
 - [Cracking Encrypted Credit Card Numbers Exposed By API](https://infosecwriteups.com/cracking-encrypted-credit-card-numbers-exposed-by-api-977c6f7b996f)
 - [What is BOLA? 3-digit bounty from Topcoder](https://infosecwriteups.com/what-is-bola-3-digit-bounty-from-topcoder-a25e7fae0d64)