Back to directory
WRITEUP #4456

Vulnerability in new TouchID feature put iCloud accounts at risk of being breached

OAuthAccount takeover
by@xnyhps(Thijs Alkemade)
Program
Apple
Published
Aug 3, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.computest.nl/en/knowledge-platform/blog/vulnerability-new-touchid-feature-iCloud-accounts-at-risk-breached/
RELATED WRITEUPS
Stealing First Party Access Token of Facebook Users: Meta Bug Bounty
OAuthAccount takeover
Self XSS + Login CSRF + OAuth = Account Takeover
Auth BypassAccount takeover
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
How I Got $250 For My Second Bug on HackerOne
OAuthSession expiration issue

Built with ❤️ by Shubham Rawat