Back to directory
WRITEUP #3528

Access to CrowdTangle Deletion Framework API

APIBroken authorizationGraphQL
by@phwd(Philippe Harewood)
Program
Meta / Facebook
Published
Aug 7, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://philippeharewood.com/access-to-crowdtangle-deletion-framework-api/
RELATED WRITEUPS
Authorization bypass due to cache misconfiguration
APIAuthorization bypass
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)
RCEForced browsing
How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System
ReconMissing authentication
Exploiting Broken Authentication Control In GraphQL
CloudGraphQL

Built with ❤️ by Shubham Rawat