Back to directory
WRITEUP #5149

Oculus identity verification bypass through brute-force

OtherOTP bypassLack of rate limiting
by@karthiksunny007(karthik kumar reddy)
Bounty
750
Program
Meta / Facebook
Published
Sep 9, 2019
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@karthiksoft007/oculus-identity-verification-bypass-through-brute-force-dbd0c0d3c37e
RELATED WRITEUPS
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free
Part 2: From Byovdll To Arbitrary Code Execution In Lsass
OtherUse-After-Free

Built with ❤️ by Shubham Rawat