Back to directory
WRITEUP #5128

Admin hijacked by Sea Surf Pirates

XSSStored XSSCSRFAccount takeover
by@gauravnarwani97(Gaurav Narwani)
Program
Dolibarr
Published
Sep 19, 2019
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://gauravnarwani.com/admin-hijacked-by-sea-surf-pirates/
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Stored XSS in LibreOffice
XSSStored XSS
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
XSSStored XSS

Built with ❤️ by Shubham Rawat