Back to directory
WRITEUP #103

The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover

APIGraphQLIDORAuthentication bypassAccount takeover
by@ourahali(Oussama Rahali)
Program
-
Published
Aug 7, 2024
Added to HackDex
Aug 22, 2024
Read Full Writeuphttps://oussamarahali.com/blog/butterfly-effect-zero-click-account-takeover/
RELATED WRITEUPS
Authorization bypass due to cache misconfiguration
APIAuthorization bypass
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
Zomatoooo! IDOR in Saved Payments
IDOR

Built with ❤️ by Shubham Rawat