Back to directory
WRITEUP #3124

Bug Hunting Journey of 2021

XSSStored XSSOpen redirectToken leakCSRFLogic flawInformation disclosureIDORAccount takeover
by@sudhanshur705(Sudhanshu Rajbhar)
Bounty
3,200
Program
-
Published
Dec 31, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://infosecwriteups.com/bug-hunting-journey-of-2021-1fa60b28d949
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Vulnerabilities in Homepage Dashboard
RCESSRF
How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System
ReconMissing authentication

Built with ❤️ by Shubham Rawat