Back to directory

WRITEUP #2277

Saving more than 100,000 website from a Watering Hole attack

OtherWeb cache poisoningWatering hole attack

by@Lotus_619(mohamad mahmoudi)

Bounty

5,000

Program

HubSpot

Published

Aug 31, 2022

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://med-mahmoudi26.medium.com/saving-more-than-100-000-website-from-a-watering-hole-attack-a22f63a37f94

▸ RELATED WRITEUPS

Gotta cache 'em all: bending the rules of web cache exploitation

OtherWeb cache poisoning

Splitting the email atom: exploiting parsers to bypass access controls

OtherWeb cache poisoning

Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies

OtherWeb cache poisoning

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

Built with ❤️ by Shubham Rawat