Back to directory

WRITEUP #4894

Using CSRF I Got Weird Account Takeover

CSRFAccount takeover

by@FlEx0Geek(Mohamed Sayed)

Program

-

Published

Feb 5, 2020

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://flex0geek.blogspot.com/2020/02/using-csrf-i-got-weird-account-takeover.html

▸ RELATED WRITEUPS

CSRF Bypass Using Domain Confusion Leads To ATO

CSRFAccount takeover

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Self-XSS to ATO via Site Features

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center

Auth Bypass2FA / MFA bypass

Built with ❤️ by Shubham Rawat