Back to directory

WRITEUP #3967

Password Reset Token Leak via X-Forwarded-Host

Auth BypassHost header injectionAccount takeoverPassword reset

by@saajanbhujel(Saajan Bhujel)

Bounty

1,000

Program

-

Published

Feb 26, 2021

Added to HackDex

Oct 17, 2022

Read Full Writeuphttps://saajan.bhujel.cyou/blog/web/2021-02-26-password-reset-token-leak-via-x-forwarded-host

▸ RELATED WRITEUPS

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center

Auth Bypass2FA / MFA bypass

Forced SSO Session Fixation

Account takeover on 8 years old public program

Auth BypassAccount takeover

Breaking the Barrier: Admin Panel Takeover Worth $3500

Auth BypassAuthentication bypass

Built with ❤️ by Shubham Rawat