Back to directory
WRITEUP #2109

Auth Bypass Via Exposed Credentials

APIHardcoded API keys
by@Crypt0g30rgy(g30rgy th3 d4rk)
Bounty
700
Program
-
Published
Oct 7, 2022
Added to HackDex
Feb 26, 2023
Read Full Writeuphttps://crypt0g30rgy.github.io/post/AuthBypass
RELATED WRITEUPS
Authorization bypass due to cache misconfiguration
APIAuthorization bypass
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL

Built with ❤️ by Shubham Rawat