Back to directory
WRITEUP #1797

Simple CORS misconfig leads to disclose the sensitive token worth of $$$

OtherCORS misconfigurationToken leak
byRamalingasamy
Program
Linear
Published
Dec 16, 2022
Added to HackDex
Dec 20, 2022
Read Full Writeuphttps://0xraminfosec.medium.com/simple-cors-misconfig-leads-to-disclose-the-sensitive-token-worth-of-91433763f4d6
RELATED WRITEUPS
My First Bug Bounty: CORS Misconfiguration
OtherCORS misconfiguration
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free

Built with ❤️ by Shubham Rawat