Back to directory
WRITEUP #6357

Authentication bypass on Ubiquity’s Single Sign-On via subdomain takeover

AI / LLMSubdomain takeoverAuthentication bypass
by@ArneSwinnen(Arne Swinnen)
Bounty
500
Program
Ubiquity Networks
Published
Nov 29, 2016
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.arneswinnen.net/2016/11/authentication-bypass-on-sso-ubnt-com-via-subdomain-takeover-of-ping-ubnt-com/
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
AI / LLMAI
Google AI Studio: LLM-Powered Data Exfiltration Hits Again! Quickly Fixed.
AI / LLMAI

Built with ❤️ by Shubham Rawat