Back to directory

WRITEUP #1970

Compromising Plesk Via Its REST API

CSRFCORS misconfiguration

by@Adrian__T(Adrian Tiron)

Program

Plesk

Published

Nov 8, 2022

Added to HackDex

Nov 11, 2022

Read Full Writeuphttps://fortbridge.co.uk/research/compromising-plesk-via-its-rest-api/

▸ RELATED WRITEUPS

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

CSRF Bypass Using Domain Confusion Leads To ATO

CSRFAccount takeover

Vulnerabilities in Homepage Dashboard

My First Bug Bounty: CORS Misconfiguration

OtherCORS misconfiguration

AI Under Siege: Discovering and Exploiting Vulnerabilities

Built with ❤️ by Shubham Rawat