Back to directory
WRITEUP #383

OpenStack Admin Account Takeover due to Unsafe Environment Handling in MuranoPL

Auth BypassAccount takeoverCloud
by@edwardzpeng(zhiniang peng)
Program
Openstack
Published
Mar 21, 2024
Added to HackDex
Aug 6, 2024
Read Full Writeuphttps://sites.google.com/site/zhiniangpeng/blogs/Openstack
RELATED WRITEUPS
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center
Auth Bypass2FA / MFA bypass
Forced SSO Session Fixation
Auth BypassSSO
Account takeover on 8 years old public program
Auth BypassAccount takeover
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE

Built with ❤️ by Shubham Rawat