Back to directory
WRITEUP #2538

Exposing Millions of Voter ID card users’ details.

IDOROTP bypassAccount takeoverLogic flaw
by@nxtexploit(Aziz Al Aman)
Program
CERT-In
Published
Jul 6, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://infosecwriteups.com/exposing-millions-of-voter-id-card-users-details-8a993c9a5d35
RELATED WRITEUPS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP
Auth BypassAccount takeover
Logic Flaw: I Can Block You from Accessing Your Own Account
Logic BugLogic flaw
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS

Built with ❤️ by Shubham Rawat