Back to directory
WRITEUP #4928

User Account Takeover via Signup Feature | Bug Bounty POC

Auth BypassAccount takeoverLogic flawBroken authorization
by@muzammilabbas2(Muzammil Kayani)
Program
-
Published
Jan 22, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://blog.securitybreached.org/2020/01/22/user-account-takeover-via-signup-feature-bug-bounty-poc/
RELATED WRITEUPS
Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP
Auth BypassAccount takeover
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center
Auth Bypass2FA / MFA bypass
How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System
ReconMissing authentication
Forced SSO Session Fixation
Auth BypassSSO

Built with ❤️ by Shubham Rawat