Back to directory

WRITEUP #1992

Improper Access Control — My Third Finding on Hackerone!

OtherHTML injectionBroken Access Control

by@mehedishakeel(mehedishakeel)

Program

-

Published

Nov 2, 2022

Added to HackDex

Nov 3, 2022

Read Full Writeuphttps://mehedishakeel.medium.com/improper-access-control-my-third-finding-on-hackerone-1455e95b6c8c

▸ RELATED WRITEUPS

500$ From Meta by reporting a HTMLi(Accidental Bug)

OtherHTML injection

Leaking All Users Google Drive Files

OtherBroken Access Control

Hacking Moodle Apps Via External Functions

OtherBroken Access Control

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

Built with ❤️ by Shubham Rawat