Back to directory

WRITEUP #629

CVE-2023-6483: Improper/missing API authentication in ADiTaaS v5.1

OtherMissing authenticationBroken Access Control

by@XeEaton(Eaton Z.)

Program

ADiTaaS

Published

Dec 18, 2023

Added to HackDex

Dec 27, 2023

Read Full Writeuphttps://eaton-works.com/2023/12/18/aditaas-cve-2023-6483/

▸ RELATED WRITEUPS

Leaking All Users Google Drive Files

OtherBroken Access Control

Hacking Moodle Apps Via External Functions

OtherBroken Access Control

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Built with ❤️ by Shubham Rawat