With broken logic the flaw is usually in the form of a parameter that is send with the POST request, that shouldn't be in the POST request and not being checked on the backend. Eg, a price of an item, the amount of points, the discount... If these things are blindly excepted by the backend without any check, you can get interesting bugs.