Back to directory
WRITEUP #3394

Weaponizing Reflected XSS to Account Takeover

XSSAccount takeover
by@pwnsauc3(Hassan Shahid)
Program
-
Published
Sep 16, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://pwnsauc3.medium.com/weaponizing-reflected-xss-to-account-takeover-ae8aeea7aca3
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass

Built with ❤️ by Shubham Rawat