Back to directory

WRITEUP #4152

EN | Account Takeover via Web Cache Poisoning based Reflected XSS

XSSReflected XSSWeb cache poisoningAccount takeover

by@lutfumertceylan(Lütfü Mert Ceylan)

Program

-

Published

Dec 26, 2020

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://lutfumertceylan.com.tr/posts/acc-takeover-web-cache-xss/

▸ RELATED WRITEUPS

Self-XSS to ATO via Site Features

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack

Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN

Built with ❤️ by Shubham Rawat