Back to directory
WRITEUP #1888

How I hacked into a government e-learning website

IDORAccount takeover
by@iamgk808(iamgk808)
Program
-
Published
Nov 26, 2022
Added to HackDex
Nov 26, 2022
Read Full Writeuphttps://iamgk808.medium.com/how-i-hacked-into-a-government-e-learning-website-ce8da8fb4ccc
RELATED WRITEUPS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
Zomatoooo! IDOR in Saved Payments
IDOR
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover

Built with ❤️ by Shubham Rawat