Back to directory

WRITEUP #5274

Account Takeover Using CSRF(json-based)

CSRFAccount takeover

by@shub66452(shub rathore)

Bounty

1,000

Program

-

Published

Jul 4, 2019

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://medium.com/@shub66452/account-takeover-using-csrf-json-based-a0e6efd1bffc

▸ RELATED WRITEUPS

CSRF Bypass Using Domain Confusion Leads To ATO

CSRFAccount takeover

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Self-XSS to ATO via Site Features

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center

Auth Bypass2FA / MFA bypass

Built with ❤️ by Shubham Rawat