Back to directory
WRITEUP #1419

Account Takeover: An Epic Bug Bounty Story

Auth BypassAccount takeoverSelf-XSSPre-account takeover
by@cybor_j(Jaydev Ahire)
Program
-
Published
Mar 11, 2023
Added to HackDex
Mar 23, 2023
Read Full Writeuphttps://infosecwriteups.com/account-takeover-an-epic-bug-bounty-story-dd5468d5773d
RELATED WRITEUPS
Self XSS + Login CSRF + OAuth = Account Takeover
Auth BypassAccount takeover
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center
Auth Bypass2FA / MFA bypass
Forced SSO Session Fixation
Auth BypassSSO

Built with ❤️ by Shubham Rawat