Back to directory
WRITEUP #5833

Simple Login Brute Force / Current Password Requirement Bypass

IDORAccount takeoverBruteforce
by@1337tr0lls(Mandeep Jadon)
Program
-
Published
Sep 7, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@ciph3r7r0ll/simple-login-brute-force-current-password-requirement-bypass-e8f58931e257
RELATED WRITEUPS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens
RCEBruteforce
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
Zomatoooo! IDOR in Saved Payments
IDOR

Built with ❤️ by Shubham Rawat