Back to directory

WRITEUP #4608

Let’s Bypass CSRF Protection & Password Confirmation to Takeover Victim Accounts :D

CSRF

by@harshbothra_(Harsh Bothra)

Program

-

Published

Jun 12, 2020

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://medium.com/bugbountywriteup/lets-bypass-csrf-protection-password-confirmation-to-takeover-victim-accounts-d-4a21297847ff

▸ RELATED WRITEUPS

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

CSRF Bypass Using Domain Confusion Leads To ATO

CSRFAccount takeover

Vulnerabilities in Homepage Dashboard

AI Under Siege: Discovering and Exploiting Vulnerabilities

How Almost Sacrificing a University Group Project led to a Microsoft Bug Bounty

Built with ❤️ by Shubham Rawat