Back to directory

WRITEUP #3303

How I was able to revoke your Instagram 2FA

RCEBruteforceRate limiting bypass

by@DhiyaneshDK(Dhiyaneshwaran)

Bounty

5,000

Program

Meta / Facebook

Published

Oct 23, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://dhiyaneshgeek.github.io/web/security/2021/10/23/how-i-was-able-to-revoke-your-instagram-2fa/

▸ RELATED WRITEUPS

Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat