Back to directory
WRITEUP #4992

Stored Iframe Injection + CSRF = Account Takeover 😎😎

CSRFHTML injection
by@XploiteR_D(Rounak Dhadiwal)
Program
-
Published
Dec 16, 2019
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@irounakdhadiwal999/stored-iframe-injection-csrf-account-takeover-42c93ad13f5d
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Vulnerabilities in Homepage Dashboard
RCESSRF
500$ From Meta by reporting a HTMLi(Accidental Bug)
OtherHTML injection
AI Under Siege: Discovering and Exploiting Vulnerabilities
AI / LLMAI

Built with ❤️ by Shubham Rawat