Back to directory
WRITEUP #4264

CVE-2020-13294

Auth BypassBroken authenticationOIDCOAuth
by@_lauritz_(Lauritz Holtmann)
Program
GitLab
Published
Nov 1, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://security.lauritz-holtmann.de/advisories/cve-2020-13294/
RELATED WRITEUPS
Account Takeover via Broken Authentication Workflow: Free Lifetime Streaming!
Auth BypassBroken authentication
Plug Security Holes in React Apps That Can Lead to API Exploitation
Auth BypassSSO
Self XSS + Login CSRF + OAuth = Account Takeover
Auth BypassAccount takeover
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
How I Got $250 For My Second Bug on HackerOne
OAuthSession expiration issue

Built with ❤️ by Shubham Rawat