Back to directory
WRITEUP #3421

Account Takeover via XSS in e-signature feature worth 2500$

XSSAccount takeover
by@gkhck_(Gökhan Güzelkokar)
Bounty
2,500
Program
-
Published
Sep 8, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@gguzelkokar.mdbf15/xss-via-account-takeover-in-e-signature-feature-worth-2500-435f3f8325bf
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass

Built with ❤️ by Shubham Rawat