Back to directory

WRITEUP #3283

How i made 500$ with XSS

XSSAccount takeover

by@nvccim(Nassim Chami)

Bounty

500

Program

-

Published

Nov 1, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://nassimchami.medium.com/stored-xss-to-account-take-over-45a7e09116a7

▸ RELATED WRITEUPS

Self-XSS to ATO via Site Features

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN

Built with ❤️ by Shubham Rawat