Back to directory

WRITEUP #4060

OTP Bypass Account Takeover to Admin Panel — Ft. Header Injection

Auth BypassOTP bypassAccount takeover

by@logicbomb_1(Avinash Jain)

Program

-

Published

Jan 28, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://logicbomb.medium.com/otp-bypass-account-takeover-to-admin-panel-ft-header-injection-16f2982a0136

▸ RELATED WRITEUPS

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center

Auth Bypass2FA / MFA bypass

Forced SSO Session Fixation

Account takeover on 8 years old public program

Auth BypassAccount takeover

$500 for Cracking Invitation Code For Unauthorized Access & Account Takeover

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat