Back to directory

WRITEUP #1898

Dodging OAuth origin restrictions for Firebase spelunking

OAuthSecurity misconfigurationBroken authentication

by@saligrama_a(Aditya Saligrama)

Program

-

Published

Nov 23, 2022

Added to HackDex

Nov 25, 2022

Read Full Writeuphttps://saligrama.io/blog/post/dodging-oauth-origin-restrictions/

▸ RELATED WRITEUPS

How I Got $250 For My Second Bug on HackerOne

OAuthSession expiration issue

AI Under Siege: Discovering and Exploiting Vulnerabilities

Account Takeover via Broken Authentication Workflow: Free Lifetime Streaming!

Auth BypassBroken authentication

Plug Security Holes in React Apps That Can Lead to API Exploitation

Stealing First Party Access Token of Facebook Users: Meta Bug Bounty

OAuthAccount takeover

Built with ❤️ by Shubham Rawat